Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

574 matches found

SUSE CVE
SUSE CVEadded 2026/05/27 3:51 a.m.2 views

SUSE CVE-2024-5154

A flaw was found in cri-o. A malicious container can create a symbolic link to arbitrary files on the host via directory traversal “../“. This flaw allows the container to read and write to arbitrary files on the host system...

8.1CVSS7.3AI score0.01705EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/05/26 1:10 p.m.5 views

CVE-2026-7374

A flaw was found in KubeVirt's virt-handler component. This vulnerability allows an authenticated OpenShift user with edit permissions in a single namespace to exploit improper symlink validation when connecting to virtual machine console sockets. By replacing the console socket with a symlink to...

9.9CVSS5.8AI score0.00121EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/05/26 12:0 a.m.6 views

PT-2026-43242

Name of the Vulnerable Software and Affected Versions KubeVirt affected versions not specified Description A flaw in the virt-handler component allows an authenticated OpenShift user with edit permissions in a single namespace to exploit improper symlink validation when connecting to virtual...

9.9CVSS5.8AI score0.00121EPSS
Exploits0References16
RedHat Linux
RedHat Linuxadded 2026/05/20 10:49 a.m.6 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.18.42 security and extras update

Red Hat OpenShift Container Platform release 4.18.42 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.18. Red Hat Product Security has rated this update as having a security impact of...

8.7CVSS5.9AI score0.00029EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/05/06 12:0 a.m.5 views

RHCOS 4 : OpenShift Container Platform 4.2.36 cri-o (RHSA-2020:2776)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:2776 advisory. - cri-o: infra container reparented to systemd following OOM Killer killing it's conmon CVE-2019-14891 Note that Nessus has not tested for th...

6CVSS5.8AI score0.00316EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/05/06 12:0 a.m.4 views

RHCOS 4 : OpenShift Container Platform 4.8.35 (RHSA-2022:0871)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0871 advisory. - CRI-O: Arbitrary code execution in cri-o via abusing kernel.corepattern kernel parameter CVE-2022-0811 - workflow-cps: OS command...

9CVSS7.7AI score0.2378EPSS
Exploits0References19
Tenable Nessus
Tenable Nessusadded 2026/05/06 12:0 a.m.3 views

RHCOS 3 : OpenShift Container Platform 3.9 cri-o (RHSA-2019:3812)

The remote Red Hat Enterprise Linux CoreOS 3 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2019:3812 advisory. - containers/image: not enforcing TLS when sending username+password credentials to token servers leading to credential disclosure...

6.4CVSS5.8AI score0.0041EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/05/06 12:0 a.m.5 views

RHCOS 4 : OpenShift Container Platform 4.7.45 (RHSA-2022:0870)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:0870 advisory. - cri-o: pod with access to 'hostIPC' and 'hostNetwork' kernel namespace allows sysctl from the list of safe sysctls to be applied t...

9CVSS7.7AI score0.2378EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2026/05/06 12:0 a.m.2 views

RHCOS 4 : OpenShift Container Platform 4.1.17 cri-o (RHSA-2019:2825)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2019:2825 advisory. - containers/image: not enforcing TLS when sending username+password credentials to token servers leading to credential disclosure...

6.4CVSS5.8AI score0.0041EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/05/06 12:0 a.m.4 views

RHCOS 4 : OpenShift Container Platform 4.9.25 (RHSA-2022:0860)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:0860 advisory. - CRI-O: Arbitrary code execution in cri-o via abusing kernel.corepattern kernel parameter CVE-2022-0811 Note that Nessus has not tested for...

9CVSS6.5AI score0.2378EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/05/04 12:0 a.m.2 views

RHCOS 4 : OpenShift Container Platform 4.6.59 (RHSA-2022:4947)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:4947 advisory. - cri-o: memory exhaustion on the node when access to the kube api CVE-2022-1708 - credentials: Stored XSS vulnerabilities in jenkin...

7.8CVSS6.9AI score0.00464EPSS
Exploits1References8
Tenable Nessus
Tenable Nessusadded 2026/05/04 12:0 a.m.1 views

RHCOS 4 : OpenShift Container Platform 4.9.38 (RHSA-2022:4972)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:4972 advisory. - cri-o: memory exhaustion on the node when access to the kube api CVE-2022-1708 Note that Nessus has not tested for this issue but has inste...

7.8CVSS6.9AI score0.00464EPSS
Exploits1References5
Tenable Nessus
Tenable Nessusadded 2026/05/04 12:0 a.m.0 views

RHCOS 4 : OpenShift Container Platform 4.13.43 (RHSA-2024:3496)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:3496 advisory. - cri-o: Arbitrary command injection via pod annotation CVE-2024-3154 Note that Nessus has not tested for this issue but has instead relied...

7.2CVSS6.4AI score0.00369EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/05/04 12:0 a.m.1 views

RHCOS 4 : OpenShift Container Platform 4.15.37 (RHSA-2024:8428)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:8428 advisory. - Podman: Buildah: cri-o: FIPS Crypto-Policy Directory Mounting Issue in containers/common Go Library CVE-2024-9341 - Podman: Builda...

8.2CVSS7.2AI score0.01561EPSS
Exploits0References12
Tenable Nessus
Tenable Nessusadded 2026/05/04 12:0 a.m.1 views

RHCOS 4 : OpenShift Container Platform 4.15.17 (RHSA-2024:3676)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:3676 advisory. - cri-o: malicious container can create symlink on host CVE-2024-5154 Note that Nessus has not tested for this issue but has instead relied...

8.1CVSS7.3AI score0.01705EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/05/04 12:0 a.m.1 views

RHCOS 4 : OpenShift Container Platform 4.12.57 (RHSA-2024:2784)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2784 advisory. - buildah: full container escape at build time CVE-2024-1753 - cri-o: Arbitrary command injection via pod annotation CVE-2024-3154 -...

8.6CVSS6.8AI score0.04986EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2026/05/04 12:0 a.m.3 views

RHCOS 4 : OpenShift Container Platform 4.13.53 (RHSA-2024:8690)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:8690 advisory. - Podman: Buildah: cri-o: FIPS Crypto-Policy Directory Mounting Issue in containers/common Go Library CVE-2024-9341 - buildah: Build...

8.2CVSS7.1AI score0.01561EPSS
Exploits0References14
Tenable Nessus
Tenable Nessusadded 2026/05/04 12:0 a.m.2 views

RHCOS 4 : OpenShift Container Platform 4.16.18 (RHSA-2024:8263)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:8263 advisory. - Podman: Buildah: cri-o: FIPS Crypto-Policy Directory Mounting Issue in containers/common Go Library CVE-2024-9341 - go/parser:...

8.2CVSS7AI score0.00899EPSS
Exploits0References10
Tenable Nessus
Tenable Nessusadded 2026/05/04 12:0 a.m.1 views

RHCOS 3 : OpenShift Container Platform 3.11.715 (RHSA-2022:4999)

The remote Red Hat Enterprise Linux CoreOS 3 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:4999 advisory. - cri-o: memory exhaustion on the node when access to the kube api CVE-2022-1708 Note that Nessus has not tested for this issue but has inste...

7.8CVSS7.3AI score0.00464EPSS
Exploits1References6
CBLMariner
CBLMarineradded 2026/03/09 2:32 p.m.2 views

CVE-2025-11065 affecting package cri-o for versions less than 1.22.3-20

CVE-2025-11065 affecting package cri-o for versions less than 1.22.3-20. A patched version of the package is available...

5.3CVSS5.8AI score0.00009EPSS
Exploits0
Rows per page
Query Builder