Lucene search
K

4 matches found

NVD
NVD
added 2024/12/17 11:15 p.m.13 views

CVE-2024-9779

A flaw was found in Open Cluster Management OCM when a user has access to the worker nodes which contain the cluster-manager or klusterlet deployments. The cluster-manager deployment uses a service account with the same name "cluster-manager" which is bound to a ClusterRole also named...

7.5CVSS0.00439EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/12/17 10:59 p.m.22 views

CVE-2024-9779 Open-cluster-management-io/ocm: cluster-manager permissions may allow a worker node to obtain service account tokens

A flaw was found in Open Cluster Management OCM when a user has access to the worker nodes which contain the cluster-manager or klusterlet deployments. The cluster-manager deployment uses a service account with the same name "cluster-manager" which is bound to a ClusterRole also named...

7.5CVSS0.00439EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/12/17 10:59 p.m.18 views

CVE-2024-9779 Open-cluster-management-io/ocm: cluster-manager permissions may allow a worker node to obtain service account tokens

A flaw was found in Open Cluster Management OCM when a user has access to the worker nodes which contain the cluster-manager or klusterlet deployments. The cluster-manager deployment uses a service account with the same name "cluster-manager" which is bound to a ClusterRole also named...

7.5CVSS6.7AI score0.00439EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/10/10 9:0 p.m.9 views

CVE-2024-9779

A flaw was found in Open Cluster Management OCM when a user has access to the worker nodes which contain the cluster-manager or klusterlet deployments. The cluster-manager deployment uses a service account with the same name "cluster-manager" which is bound to a ClusterRole also named...

7.5CVSS6.5AI score0.00439EPSS
Exploits0References6
Rows per page
Query Builder