Lucene search
+L

451 matches found

RedHat Linux
RedHat Linux
added 2026/04/14 3:55 p.m.9 views

Important: Red Hat Security Advisory: Submariner v0.22 security fixes and container updates

Submariner v0.22 General Availability release images, which provide enhancements, security fixes, and updated container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

10CVSS6.8AI score0.02667EPSS
Exploits6References12
Snyk
Snyk
added 2026/04/07 3:30 p.m.11 views

Improper Certificate Validation

Overview Affected versions of this package are vulnerable to Improper Certificate Validation via improper validation in the certificate renewal process. An attacker can gain unauthorized access to other managed clusters by forging a client certificate that is accepted by the controller. Remediati...

8.4CVSS5.5AI score0.00112EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/07 3:30 p.m.3 views

EUVD-2026-19690

A flaw was found in Open Cluster Management OCM, the technology underlying Red Hat Advanced Cluster Management ACM. Improper validation of Kubernetes client certificate renewal allows a managed cluster administrator to forge a client certificate that can be approved by the OCM controller. This...

8.2CVSS5.8AI score0.00112EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2026/04/07 3:30 p.m.8 views

Open Cluster Management (OCM): Cross-cluster privilege escalation via improper Kubernetes client certificate renewal validation

A flaw was found in Open Cluster Management OCM, the technology underlying Red Hat Advanced Cluster Management ACM. Improper validation of Kubernetes client certificate renewal allows a managed cluster administrator to forge a client certificate that can be approved by the OCM controller. This...

8.2CVSS5.8AI score0.00112EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2026/04/07 3:30 p.m.10 views

GHSA-Q4GV-PJMH-C735 Open Cluster Management (OCM): Cross-cluster privilege escalation via improper Kubernetes client certificate renewal validation

A flaw was found in Open Cluster Management OCM, the technology underlying Red Hat Advanced Cluster Management ACM. Improper validation of Kubernetes client certificate renewal allows a managed cluster administrator to forge a client certificate that can be approved by the OCM controller. This...

8.2CVSS5.7AI score0.00112EPSS
Exploits1References6
NVD
NVD
added 2026/04/07 3:17 p.m.5 views

CVE-2026-4740

A flaw was found in Open Cluster Management OCM, the technology underlying Red Hat Advanced Cluster Management ACM. Improper validation of Kubernetes client certificate renewal allows a managed cluster administrator to forge a client certificate that can be approved by the OCM controller. This...

8.2CVSS0.00112EPSS
Exploits1References4
CVE
CVE
added 2026/04/07 2:30 p.m.32 views

CVE-2026-4740

CVE-2026-4740 affects Open Cluster Management (OCM), the tech behind Red Hat ACM. The issue is improper validation of Kubernetes client certificate renewal, which can let a managed-cluster admin forge a client certificate accepted by the OCM controller. This enables cross-cluster privilege escala...

8.2CVSS5.8AI score0.00112EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/07 2:30 p.m.2 views

CVE-2026-4740

A flaw was found in Open Cluster Management OCM, the technology underlying Red Hat Advanced Cluster Management ACM. Improper validation of Kubernetes client certificate renewal allows a managed cluster administrator to forge a client certificate that can be approved by the OCM controller. This...

8.2CVSS5.8AI score0.00112EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/04/07 2:30 p.m.24 views

CVE-2026-4740 Rhacm: open cluster management (ocm): cross-cluster privilege escalation via improper kubernetes client certificate renewal validation

A flaw was found in Open Cluster Management OCM, the technology underlying Red Hat Advanced Cluster Management ACM. Improper validation of Kubernetes client certificate renewal allows a managed cluster administrator to forge a client certificate that can be approved by the OCM controller. This...

8.2CVSS0.00112EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/04/07 2:30 p.m.9 views

CVE-2026-4740 Rhacm: open cluster management (ocm): cross-cluster privilege escalation via improper kubernetes client certificate renewal validation

A flaw was found in Open Cluster Management OCM, the technology underlying Red Hat Advanced Cluster Management ACM. Improper validation of Kubernetes client certificate renewal allows a managed cluster administrator to forge a client certificate that can be approved by the OCM controller. This...

8.2CVSS5.8AI score0.00112EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/04/07 2:13 p.m.4 views

CVE-2026-4740

A flaw was found in Open Cluster Management OCM, the technology underlying Red Hat Advanced Cluster Management ACM. Improper validation of Kubernetes client certificate renewal allows a managed cluster administrator to forge a client certificate that can be approved by the OCM controller. This...

8.2CVSS5.8AI score0.00112EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/04/07 12:0 a.m.6 views

PT-2026-30871

Name of the Vulnerable Software and Affected Versions Open Cluster Management OCM affected versions not specified Description A flaw exists due to improper validation of Kubernetes client certificate renewal. This allows a managed cluster administrator to forge a client certificate that can be...

8.2CVSS5.9AI score0.00112EPSS
Exploits1References11
RedHat Linux
RedHat Linux
added 2026/04/02 7:56 a.m.7 views

Important: Red Hat Security Advisory: Multicluster Global Hub 1.4.5 security update

Multicluster Global Hub v1.4.5 general availability release images, which provide security fixes, bug fixes, and updated container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...

10CVSS6.9AI score0.01945EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2026/03/24 2:7 p.m.8 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes v2.12.8 security update

Red Hat Advanced Cluster Management for Kubernetes 2.12 General Availability release images, which add new features and enhancements, bug fixes, and updated container images. Red Hat Advanced Cluster Management for Kubernetes 2.12 images Red Hat Advanced Cluster Management for Kubernetes provides...

8.2CVSS7AI score0.025EPSS
Exploits2References9
Fedora
Fedora
added 2026/03/15 12:17 a.m.6 views

[SECURITY] Fedora 44 Update: pcs-0.12.2-1.fc44

pcs is a configuration tool for Corosync and Pacemaker. It permits users to easily view, modify and create high availability clusters based on Pacemaker. This package contains the pcs command-line utility and its server pcsd...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/15 12:0 a.m.12 views

Fedora 42 : pcs (2026-c8dc2c0de3)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-c8dc2c0de3 advisory. - Rebased pcs to the newest major version see CHANGELOG.md - Updated standalone web UI and HA Cluster Management Cockpit application to pcs-web-ui 0.1.24.2 s...

8.2CVSS6.6AI score0.01535EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/02/11 4:14 p.m.8 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes v2.14.2 security update

Red Hat Advanced Cluster Management for Kubernetes 2.14 General Availability release images, which add new features and enhancements, bug fixes, and updated container images. Red Hat Advanced Cluster Management for Kubernetes 2.14 images Red Hat Advanced Cluster Management for Kubernetes provides...

8.6CVSS6.7AI score0.0077EPSS
Exploits3References9
Fedora
Fedora
added 2026/02/08 1:12 a.m.10 views

[SECURITY] Fedora 43 Update: k9s-0.50.18-1.fc43

Kubernetes CLI To Manage Your Clusters In Style!...

8.2CVSS7AI score0.00632EPSS
Exploits3
The Hacker News
The Hacker News
added 2026/01/30 7:35 a.m.10 views

Ex-Google Engineer Convicted for Stealing AI Secrets for China Startup

A former Google engineer accused of stealing thousands of the company's confidential documents to build a startup in China has been convicted in the U.S., the Department of Justice DoJ announced Thursday. Linwei Ding aka Leon Ding, 38, was convicted by a federal jury on seven counts of economic...

6.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2026/01/25 10:43 p.m.9 views

Moderate: Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes v2.15.1 security update

Red Hat Advanced Cluster Management for Kubernetes 2.15 General Availability release images, which add new features and enhancements, bug fixes, and updated container images. Red Hat Advanced Cluster Management for Kubernetes 2.15 images Red Hat Advanced Cluster Management for Kubernetes provides...

4.3CVSS7.1AI score0.00419EPSS
Exploits0References2
Rows per page
Query Builder