CVE-2019-14819

A flaw was found during the upgrade of an existing OpenShift Container Platform 3.x cluster. Using CRI-O, the dockergc service account is assigned to the current namespace of the user performing the upgrade. This flaw can allow an unprivileged user to escalate their privileges to those allowed by...

CVE-2019-14819

Summary: CVE-2019-14819 affects OpenShift Container Platform during upgrade with CRI-O. The dockergc service account is incorrectly bound to the current user’s namespace, which can let an unprivileged user escalate privileges to the level allowed by the privileged Security Context Constraints. Im...

PT-2020-9605 · Red Hat · Openshift Container Platform

Name of the Vulnerable Software and Affected Versions: OpenShift Container Platform versions 3.x Description: A flaw was discovered in the upgrade process of OpenShift Container Platform, specifically when using CRI-O. The issue allows an unprivileged user to escalate their privileges to those...

Authorization Bypass

openshift-ansible is vulnerable to authorization bypass. The vulnerability exists as dockergc service account incorrectly associated with namespace during upgrade...