EUVD-2022-1990

Malicious code in bioql PyPI...

GO-2023-1985 Kubernetes in OpenShift3 Access Control Misconfiguration in k8s.io/kubernetes

Kubernetes in OpenShift3 Access Control Misconfiguration in k8s.io/kubernetes...

Kubernetes in OpenShift3 Access Control Misconfiguration

Kubernetes in OpenShift3 allows remote authenticated users to use the private images of other users should they know the name of said image...

GHSA-2H9C-34V6-3QMR Kubernetes in OpenShift3 Access Control Misconfiguration

Kubernetes in OpenShift3 allows remote authenticated users to use the private images of other users should they know the name of said image...

RHEL 7 : Red Hat OpenShift Enterprise 3.1 (RHSA-2016:1095)

An update for atomic-openshift is now available for Red Hat OpenShift Enterprise 3.1. In addition, all images have been rebuilt on the new RHEL 7.2.4 base image. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base...

Red Hat OpenShift3 Kubernetes Sensitive Information Disclosure Vulnerability

Red Hat OpenShift3 is a Platform-as-a-Service PaaS cloud computing platform that builds, tests, deploys and runs applications. A security vulnerability in Red Hat OpenShift3 Kubernetes allows remote attackers to exploit the vulnerability by submitting a special request to access images that are...

CVE-2015-7561

Kubernetes in OpenShift3 allows remote authenticated users to use the private images of other users should they know the name of said image...

Code injection

Kubernetes in OpenShift3 allows remote authenticated users to use the private images of other users should they know the name of said image...

CVE-2015-7561

CVE-2015-7561 in Kubernetes/OpenShift3: remote authenticated users can access other users’ private images if they know the image name. The description provided notes the impact as cross-user image access, but the documents do not specify the root cause details (e.g., how image ownership is enforc...

CVE-2015-7561

Kubernetes in OpenShift3 allows remote authenticated users to use the private images of other users should they know the name of said image...

PT-2017-7225 · Red Hat +1 · Openshift +1

Name of the Vulnerable Software and Affected Versions: OpenShift3 affected versions not specified Description: The issue allows remote authenticated users to access private images of other users if they know the image name. This is due to an access control misconfiguration in Kubernetes within...

OpenShift3: Exec operations should be forbidden to privileged pods such as builder pods

An improper permission check issue was discovered in the server admission control component in OpenShift. A user with build permissions could use this flaw to execute arbitrary shell commands on a build pod with the privileges of the root user...