CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-14022

Malware in sbrugna...

7.8CVSS5.4AI score0.00046EPSS

Exploits0References3

OSV•added 2023/09/24 1:15 a.m.•4 views

CVE-2023-1260

An authentication bypass vulnerability was discovered in kube-apiserver. This issue could allow a remote, authenticated attacker who has been given permissions "update, patch" the "pods/ephemeralcontainers" subresource beyond what the default is. They would then need to create a new pod or patch...

8CVSS5.8AI score0.00063EPSS

Exploits0References9

RedHat Linux•added 2023/08/02 1:12 a.m.•3 views

kube-apiserver: PrivEsc

8CVSS5.8AI score0.00063EPSS

Exploits0References5

CNNVD•added 2023/04/04 12:0 a.m.•1 views

Red Hat openshift 安全漏洞

Red Hat OpenShift is a Platform-as-a-Service PaaS cloud computing platform from Red Hat, Inc. that supports building, testing, deploying and running applications. Red Hat openshift has a security vulnerability that stems from the presence of an authentication bypass vulnerability, which could be...

8CVSS7.5AI score0.00063EPSS

Exploits0References12

IBM Security Bulletins•added 2021/11/11 5:32 p.m.•30 views

Security Bulletin: Red Hat OpenShift on IBM Cloud is affected by a Kubernetes kubelet security vulnerability (CVE-2021-25741)

Summary Red Hat OpenShift on IBM Cloud is affected by a Kubernetes kubelet security vulnerability that could allow host path like access without use of the hostPath feature, thus bypassing the restriction CVE-2021-25741. Vulnerability Details CVEID: CVE-2021-25741 Description: Kubernetes could...

8.8CVSS7.9AI score0.33042EPSS

Exploits1Affected Software1

NVD•added 2021/06/02 12:15 p.m.•11 views

CVE-2020-14336

A flaw was found in the Restricted Security Context Constraints SCC, where it allows pods to craft custom network packets. This flaw allows an attacker to cause a denial of service attack on an OpenShift Container Platform cluster if they can deploy pods. The highest threat from this vulnerabilit...

6.5CVSS0.00329EPSS

Exploits0References1

Prion•added 2021/06/02 12:15 p.m.•21 views

Design/Logic Flaw

4CVSS6.3AI score0.00329EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/06/02 11:48 a.m.•14 views

CVE-2020-14336

6.2AI score0.00329EPSS

Exploits0References1

NCSC•added 2020/10/27 12:0 a.m.•2 views

Vulnerability fixed in Red Hat OpenShift

Red Hat has fixed a vulnerability in OpenShift. The vulnerability allows a malicious owner of a pod to possible to bypass a security measure in the restricted Context Constraints Object to bypass. This enables the malicious person to enabled to send custom network packets. Red Hat scales this...

6.5CVSS6.6AI score0.00329EPSS

Exploits0

IBM Security Bulletins•added 2020/10/09 5:8 p.m.•26 views

Security Bulletin: Red Hat OpenShift on IBM Cloud is affected by a Kubernetes kubelet security vulnerability (CVE-2020-8557)

Summary Red Hat OpenShift on IBM Cloud is affected by a security vulnerability in the Kubernetes kubelet that could result in the denial of service of a node CVE-2020-8557 Vulnerability Details CVEID: CVE-2020-8557 Description: Kubernetes kubelet is vulnerable to a denial of service, caused by an...

5.5CVSS6.2AI score0.00111EPSS

Exploits0Affected Software1

RedhatCVE•added 2020/09/07 5:48 a.m.•46 views

CVE-2020-14386

A flaw was found in the Linux kernel. Memory corruption can be exploited to gain root privileges from unprivileged processes. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. Mitigation If the CAPNETRAW capability disabled by...

7.8CVSS1.1AI score0.00635EPSS

Exploits1References5

RedhatCVE•added 2020/07/21 3:37 a.m.•18 views

CVE-2020-14336

4CVSS0.2AI score0.00329EPSS

Exploits0References3

OSV•added 2020/01/07 6:15 p.m.•13 views

CVE-2019-14819

A flaw was found during the upgrade of an existing OpenShift Container Platform 3.x cluster. Using CRI-O, the dockergc service account is assigned to the current namespace of the user performing the upgrade. This flaw can allow an unprivileged user to escalate their privileges to those allowed by...

8.8CVSS6.7AI score0.00264EPSS

Exploits1References1

NVD•added 2020/01/07 6:15 p.m.•14 views

CVE-2019-14819

8.8CVSS8.1AI score0.00264EPSS

Exploits1References1

CVE•added 2020/01/07 5:2 p.m.•106 views

CVE-2019-14819

Summary: CVE-2019-14819 affects OpenShift Container Platform during upgrade with CRI-O. The dockergc service account is incorrectly bound to the current user’s namespace, which can let an unprivileged user escalate privileges to the level allowed by the privileged Security Context Constraints. Im...

8.8CVSS8.5AI score0.00264EPSS

Exploits1References1Affected Software1

Cvelist•added 2020/01/07 5:2 p.m.•16 views

CVE-2019-14819

7.5CVSS8.6AI score0.00264EPSS

Exploits1References1

Positive Technologies•added 2020/01/07 12:0 a.m.•1 views

PT-2020-9605 · Red Hat · Openshift Container Platform

Name of the Vulnerable Software and Affected Versions: OpenShift Container Platform versions 3.x Description: A flaw was discovered in the upgrade process of OpenShift Container Platform, specifically when using CRI-O. The issue allows an unprivileged user to escalate their privileges to those...

8.8CVSS7.5AI score0.00264EPSS

Exploits1References3

RedHat Linux•added 2019/09/23 8:2 p.m.•2 views

openshift-ansible: dockergc service account incorrectly associated with namespace during upgrade

8.8CVSS5.8AI score0.00264EPSS

Exploits1References4

RedhatCVE•added 2019/08/28 8:51 a.m.•20 views

CVE-2019-14819

8.8CVSS4AI score0.00264EPSS

Exploits1References3

OSV•added 2019/07/25 3:15 p.m.•0 views

CVE-2019-4415

IBM Cloud Private 3.1.1 and 3.1.2 could allow a local user to obtain elevated privileges due to improper security context constraints. IBM X-Force ID: 162706...

7.8CVSS6.1AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by