CVE-2026-4740
CVE-2026-4740 affects Open Cluster Management (OCM), the tech behind Red Hat ACM. The issue is improper validation of Kubernetes client certificate renewal, which can let a managed-cluster admin forge a client certificate accepted by the OCM controller. This enables cross-cluster privilege escala...