195 matches found
RHCOS 4 : OpenShift Container Platform 4.1.17 cri-o (RHSA-2019:2825)
The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2019:2825 advisory. - containers/image: not enforcing TLS when sending username+password credentials to token servers leading to credential disclosure...
RHCOS 4 : OpenShift Container Platform 4.6.49 (RHSA-2021:4008)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:4008 advisory. - coreos-installer: incorrect signature verification on gzip-compressed install images CVE-2021-20319 Note that Nessus has not tested for thi...
RHCOS 3 : OpenShift Container Platform 3.11 (RHSA-2020:0795)
The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:0795 advisory. - atomic-openshift: reflected XSS in authentication flow CVE-2019-3889 Note that Nessus has not tested for this issue but has instead relied...
RHCOS 3 : OpenShift Container Platform 3.11.404 (RHSA-2021:0833)
The remote Red Hat Enterprise Linux CoreOS 3 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2021:0833 advisory. - golang-github-gorilla-websocket: integer overflow leads to denial of service CVE-2020-27813 Note that Nessus has not tested for this issue...
RHCOS 3 : OpenShift Container Platform 3.9 atomic-openshift (RHSA-2019:3811)
The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:3811 advisory. - atomic-openshift: OpenShift builds don't verify SSH Host Keys for the git repository CVE-2019-10150 - kubernetes: Incomplete fixes...
RHCOS 4 : OpenShift Container Platform 4.1.38 (RHSA-2020:0695)
The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:0695 advisory. - runc: volume mount race condition with shared mounts leads to information leak/integrity manipulation CVE-2019-19921 Note that Nessus has n...
RHCOS 4 : OpenShift Container Platform 4.15.41 (RHSA-2024:10841)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:10841 advisory. - runc: file descriptor leak CVE-2024-21626 Note that Nessus has not tested for this issue but has instead relied only on the application's...
RHCOS 4 : OpenShift Container Platform 4.16.44 (RHSA-2025:10782)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:10782 advisory. - net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 Note that Nessus has not tested for this...
RHCOS 3 : OpenShift Container Platform 3.3 (RHSA-2018:1239)
The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:1239 advisory. - source-to-image: Improper path sanitization in ExtractTarStreamFromTarReader in tar/tar.go CVE-2018-1102 Note that Nessus has not tested fo...
RHCOS 4 : OpenShift Container Platform 4.19.11 (RHSA-2025:15291)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:15291 advisory. - net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 Note that Nessus has not tested for this...
RHCOS 9 : OpenShift Container Platform 4.16.14 (RHSA-2024:6827)
The remote Red Hat Enterprise Linux CoreOS 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:6827 advisory. - webob: WebOb's location header normalization during redirect leads to open redirect CVE-2024-42353 Note that Nessus has not tested for this...
RHCOS 4 : OpenShift Container Platform 4.15.38 (RHSA-2024:8994)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:8994 advisory. - buildah: Buildah allows arbitrary directory mount CVE-2024-9675 Note that Nessus has not tested for this issue but has instead relied only ...
RHCOS 4 : OpenShift Container Platform 4.13.3 (RHSA-2023:3540)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3540 advisory. - golang: net/http, net/textproto: denial of service from excessive memory allocation CVE-2023-24534 - golang: net/http,...
RHCOS 4 : OpenShift Container Platform 4.15.55 (RHSA-2025:11352)
The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:11352 advisory. - net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 Note that Nessus has not tested for this...
RHCOS 4 : OpenShift Container Platform 4.12.81 (RHSA-2025:17669)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:17669 advisory. - podman: Build Context Bind Mount CVE-2025-4953 Note that Nessus has not tested for this issue but has instead relied only on the...
RHCOS 4 : OpenShift Container Platform 4.13.40 (RHSA-2024:1763)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1763 advisory. - golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads CVE-2024-1394 Note that Nessus has not tested for this iss...
RHCOS 4 : OpenShift Container Platform 4.12.74 (RHSA-2025:2443)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:2443 advisory. - podman: buildah: Container breakout by using --jobs=2 and a race condition when building a malicious Containerfile CVE-2024-11218 Note that...
RHCOS 4 : OpenShift Container Platform 4.19.3 (RHSA-2025:10291)
The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:10291 advisory. - net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 Note that Nessus has not tested for this...
RHCOS 9 : OpenShift Container Platform 4.17.14 (RHSA-2025:0656)
The remote Red Hat Enterprise Linux CoreOS 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:0656 advisory. - jinja2: Jinja has a sandbox breakout through malicious filenames CVE-2024-56201 - jinja2: Jinja has a sandbox breakout through...
RHCOS 4 : OpenShift Container Platform 4.14.10 (RHSA-2024:0292)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:0292 advisory. - golang: crypto/tls: slow verification of certificate chains containing large RSA keys CVE-2023-29409 Note that Nessus has not tested for th...