Lucene search

K
RedhatOpenshift Container Platform

266 matches found

CVE
CVE
•added 2019/03/21 4:0 p.m.•155 views

CVE-2018-12022

An issue was discovered in FasterXML jackson-databind prior to 2.7.9.4, 2.8.11.2, and 2.9.6. When Default Typing is enabled (either globally or for a specific property), the service has the Jodd-db jar (for database access for the Jodd framework) in the classpath, and an attacker can provide an LDA...

7.5CVSS8.4AI score0.03093EPSS
CVE
CVE
•added 2025/01/14 6:15 p.m.•153 views

CVE-2024-12088

A flaw was found in rsync. When using the --safe-links option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the d...

7.5CVSS8AI score0.00583EPSS
CVE
CVE
•added 2022/07/06 4:15 p.m.•149 views

CVE-2021-3696

A heap out-of-bounds write may heppen during the handling of Huffman tables in the PNG reader. This may lead to data corruption in the heap space. Confidentiality, Integrity and Availablity impact may be considered Low as it's very complex to an attacker control the encoding and positioning of corr...

6.9CVSS6.8AI score0.00113EPSS
CVE
CVE
•added 2023/10/04 11:15 a.m.•148 views

CVE-2023-2422

A flaw was found in Keycloak. A Keycloak server configured to support mTLS authentication for OAuth/OpenID clients does not properly verify the client certificate chain. A client that possesses a proper certificate can authorize itself as any other client, therefore, access data that belongs to oth...

7.1CVSS6.5AI score0.00217EPSS
CVE
CVE
•added 2023/04/10 10:15 p.m.•146 views

CVE-2023-1668

A flaw was found in openvswitch (OVS). When processing an IP packet with protocol 0, OVS will install the datapath flow without the action modifying the IP header. This issue results (for both kernel and userspace datapath) in installing a datapath flow matching all IP protocols (nw_proto is wildca...

8.2CVSS7.7AI score0.00076EPSS
CVE
CVE
•added 2024/10/15 4:15 p.m.•146 views

CVE-2024-9676

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace (--u...

6.5CVSS6.9AI score0.02669EPSS
CVE
CVE
•added 2018/12/20 10:29 p.m.•141 views

CVE-2018-17246

Kibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plugin. An attacker with access to the Kibana Console API could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with perm...

9.8CVSS9.4AI score0.93277EPSS
In wild
CVE
CVE
•added 2023/07/07 8:15 p.m.•141 views

CVE-2022-4361

Keycloak, an open-source identity and access management solution, has a cross-site scripting (XSS) vulnerability in the SAML or OIDC providers. The vulnerability can allow an attacker to execute malicious scripts by setting the AssertionConsumerServiceURL value or the redirect_uri.

10CVSS5.7AI score0.00311EPSS
CVE
CVE
•added 2018/08/21 1:0 p.m.•138 views

CVE-2018-12115

In all versions of Node.js prior to 6.14.4, 8.11.4 and 10.9.0 when used with UCS-2 encoding (recognized by Node.js under the names 'ucs2', 'ucs-2', 'utf16le' and 'utf-16le'), Buffer#write() can be abused to write outside of the bounds of a single Buffer. Writes that start from the second-to-last po...

7.5CVSS6.6AI score0.0096EPSS
CVE
CVE
•added 2022/04/18 5:15 p.m.•138 views

CVE-2022-27652

A flaw was found in cri-o, where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby (Docker Engine) where containers started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to programs...

5.3CVSS5.3AI score0.00022EPSS
CVE
CVE
•added 2023/09/15 2:15 p.m.•138 views

CVE-2022-3466

The version of cri-o as released for Red Hat OpenShift Container Platform 4.9.48, 4.10.31, and 4.11.6 via RHBA-2022:6316, RHBA-2022:6257, and RHBA-2022:6658, respectively, included an incorrect version of cri-o missing the fix for CVE-2022-27652, which was previously fixed in OCP 4.9.41 and 4.10.12...

5.3CVSS5.5AI score0.00022EPSS
CVE
CVE
•added 2019/01/22 2:29 p.m.•133 views

CVE-2019-1003004

An improper authorization vulnerability exists in Jenkins 2.158 and earlier, LTS 2.150.1 and earlier in core/src/main/java/hudson/security/AuthenticationProcessingFilter2.java that allows attackers to extend the duration of active HTTP sessions indefinitely even though the user account may have bee...

7.2CVSS7.1AI score0.02108EPSS
CVE
CVE
•added 2022/09/01 9:15 p.m.•133 views

CVE-2022-1677

In OpenShift Container Platform, a user with permissions to create or modify Routes can craft a payload that inserts a malformed entry into one of the cluster router's HAProxy configuration files. This malformed entry can match any arbitrary hostname, or all hostnames in the cluster, and direct tra...

6.3CVSS6.2AI score0.0035EPSS
CVE
CVE
•added 2023/09/27 9:15 p.m.•130 views

CVE-2023-4066

A flaw was found in Red Hat's AMQ Broker, which stores certain passwords in a secret security-properties-prop-module, defined in ActivemqArtemisSecurity CR; however, they are shown in plaintext in the StatefulSet details yaml of AMQ Broker.

5.5CVSS5.7AI score0.00037EPSS
CVE
CVE
•added 2019/04/10 9:29 p.m.•127 views

CVE-2019-1003049

Users who cached their CLI authentication before Jenkins was updated to 2.150.2 and newer, or 2.160 and newer, would remain authenticated in Jenkins 2.171 and earlier and Jenkins LTS 2.164.1 and earlier, because the fix for CVE-2019-1003004 in these releases did not reject existing remoting-based C...

8.1CVSS7.3AI score0.02108EPSS
CVE
CVE
•added 2019/04/10 9:29 p.m.•127 views

CVE-2019-1003050

The f:validateButton form control for the Jenkins UI did not properly escape job URLs in Jenkins 2.171 and earlier and Jenkins LTS 2.164.1 and earlier, resulting in a cross-site scripting (XSS) vulnerability exploitable by users with the ability to control job names.

5.4CVSS5.2AI score0.01064EPSS
CVE
CVE
•added 2015/11/25 8:59 p.m.•122 views

CVE-2015-8103

The Jenkins CLI subsystem in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to execute arbitrary code via a crafted serialized Java object, related to a problematic webapps/ROOT/WEB-INF/lib/commons-collections-*.jar file and the "Groovy variant in 'ysoserial'".

9.8CVSS8.6AI score0.90558EPSS
CVE
CVE
•added 2020/11/24 5:15 p.m.•121 views

CVE-2020-10763

An information-disclosure flaw was found in the way Heketi before 10.1.0 logs sensitive information. This flaw allows an attacker with local access to the Heketi server to read potentially sensitive information such as gluster-block passwords.

5.5CVSS4.9AI score0.00129EPSS
CVE
CVE
•added 2024/10/22 2:15 p.m.•121 views

CVE-2024-50312

A vulnerability was found in GraphQL due to improper access controls on the GraphQL introspection query. This flaw allows unauthorized users to retrieve a comprehensive list of available queries and mutations. Exposure to this flaw increases the attack surface, as it can facilitate the discovery of...

5.3CVSS5.1AI score0.00069EPSS
CVE
CVE
•added 2020/04/24 7:15 p.m.•120 views

CVE-2020-1741

A flaw was found in openshift-ansible. OpenShift Container Platform (OCP) 3.11 is too permissive in the way it specified CORS allowed origins during installation. An attacker, able to man-in-the-middle the connection between the user's browser and the openshift console, could use this flaw to perfo...

5.9CVSS5.4AI score0.00235EPSS
CVE
CVE
•added 2024/01/09 10:15 p.m.•118 views

CVE-2023-6476

A flaw was found in CRI-O that involves an experimental annotation leading to a container being unconfined. This may allow a pod to specify and get any amount of memory/cpu, circumventing the kubernetes scheduler and potentially resulting in a denial of service in the node.

7.5CVSS7.1AI score0.00168EPSS
CVE
CVE
•added 2019/08/28 4:15 p.m.•115 views

CVE-2019-10384

Jenkins 2.191 and earlier, LTS 2.176.2 and earlier allowed users to obtain CSRF tokens without an associated web session ID, resulting in CSRF tokens that did not expire and could be used to bypass CSRF protection for the anonymous user.

8.8CVSS8.4AI score0.00508EPSS
CVE
CVE
•added 2022/05/17 6:15 p.m.•115 views

CVE-2022-1706

A vulnerability was found in Ignition where ignition configs are accessible from unprivileged containers in VMs running on VMware products. This issue is only relevant in user environments where the Ignition config contains secrets. The highest threat from this vulnerability is to data confidential...

6.5CVSS6AI score0.00264EPSS
CVE
CVE
•added 2020/01/07 5:15 p.m.•114 views

CVE-2019-14854

OpenShift Container Platform 4 does not sanitize secret data written to static pod logs when the log level in a given operator is set to Debug or higher. A low privileged user could read pod logs to discover secret material if the log level has already been modified in an operator by a privileged u...

6.5CVSS6.1AI score0.00362EPSS
CVE
CVE
•added 2022/08/29 3:15 p.m.•114 views

CVE-2022-0669

A flaw was found in dpdk. This flaw allows a malicious vhost-user master to attach an unexpected number of fds as ancillary data to VHOST_USER_GET_INFLIGHT_FD / VHOST_USER_SET_INFLIGHT_FD messages that are not closed by the vhost-user slave. By sending such messages continuously, the vhost-user mas...

6.5CVSS6.4AI score0.00041EPSS
CVE
CVE
•added 2023/09/27 3:19 p.m.•114 views

CVE-2023-4065

A flaw was found in Red Hat AMQ Broker Operator, where it displayed a password defined in ActiveMQArtemisAddress CR, shown in plain text in the Operator Log. This flaw allows an authenticated local attacker to access information outside of their permissions.

5.5CVSS5.5AI score0.0004EPSS
CVE
CVE
•added 2020/04/22 4:15 p.m.•113 views

CVE-2020-10712

A flaw was found in OpenShift Container Platform version 4.1 and later. Sensitive information was found to be logged by the image registry operator allowing an attacker able to gain access to those logs, to read and write to the storage backing the internal image registry. The highest threat from t...

8.2CVSS8AI score0.00189EPSS
CVE
CVE
•added 2023/10/06 6:15 p.m.•111 views

CVE-2023-5366

A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted packets with a modified or spoofed target IP address field that can redirect ICMPv6 traffic to arbi...

7.1CVSS6.2AI score0.00025EPSS
CVE
CVE
•added 2019/08/28 4:15 p.m.•108 views

CVE-2019-10383

A stored cross-site scripting vulnerability in Jenkins 2.191 and earlier, LTS 2.176.2 and earlier allowed attackers with Overall/Administer permission to configure the update site URL to inject arbitrary HTML and JavaScript in update center web pages.

4.8CVSS5.8AI score0.0052EPSS
CVE
CVE
•added 2020/07/13 9:15 p.m.•108 views

CVE-2020-14298

The version of docker as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 advisory included an incorrect version of runc missing the fix for CVE-2019-5736, which was previously fixed via RHSA-2019:0304. This issue could allow a malicious or compromised container to compromise the c...

8.8CVSS8.5AI score0.42413EPSS
CVE
CVE
•added 2019/01/22 2:29 p.m.•107 views

CVE-2019-1003003

An improper authorization vulnerability exists in Jenkins 2.158 and earlier, LTS 2.150.1 and earlier in core/src/main/java/hudson/security/TokenBasedRememberMeServices2.java that allows attackers with Overall/RunScripts permission to craft Remember Me cookies that would never expire, allowing e.g. ...

7.2CVSS6.7AI score0.02235EPSS
CVE
CVE
•added 2019/01/09 3:29 p.m.•105 views

CVE-2019-0542

A remote code execution vulnerability exists in Xterm.js when the component mishandles special characters, aka "Xterm Remote Code Execution Vulnerability." This affects xterm.js.

8.8CVSS8.8AI score0.01946EPSS
CVE
CVE
•added 2025/01/14 6:15 p.m.•105 views

CVE-2024-12086

A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare with...

6.8CVSS6.1AI score0.00193EPSS
CVE
CVE
•added 2021/06/02 12:15 p.m.•104 views

CVE-2020-14336

A flaw was found in the Restricted Security Context Constraints (SCC), where it allows pods to craft custom network packets. This flaw allows an attacker to cause a denial of service attack on an OpenShift Container Platform cluster if they can deploy pods. The highest threat from this vulnerabilit...

6.5CVSS6.1AI score0.00329EPSS
CVE
CVE
•added 2018/12/10 2:29 p.m.•101 views

CVE-2018-1000862

An information exposure vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in DirectoryBrowserSupport.java that allows attackers with the ability to control build output to browse the file system on agents running builds beyond the duration of the build using the workspace b...

4.3CVSS4.5AI score0.00114EPSS
CVE
CVE
•added 2018/12/10 2:29 p.m.•98 views

CVE-2018-1000863

A data modification vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in User.java, IdStrategy.java that allows attackers to submit crafted user names that can cause an improper migration of user record storage formats, potentially preventing the victim from logging into Je...

8.2CVSS7.8AI score0.07215EPSS
CVE
CVE
•added 2018/12/10 2:29 p.m.•98 views

CVE-2018-1000864

A denial of service vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in CronTab.java that allows attackers with Overall/Read permission to have a request handling thread enter an infinite loop.

6.5CVSS6.3AI score0.00212EPSS
CVE
CVE
•added 2024/06/05 6:15 p.m.•97 views

CVE-2024-5037

A flaw was found in OpenShift's Telemeter. If certain conditions are in place, an attacker can use a forged token to bypass the issue ("iss") check during JSON web token (JWT) authentication.

7.5CVSS7.5AI score0.00191EPSS
CVE
CVE
•added 2019/04/01 2:29 p.m.•96 views

CVE-2019-1002100

In all Kubernetes versions prior to v1.11.8, v1.12.6, and v1.13.4, users that are authorized to make patch requests to the Kubernetes API Server can send a specially crafted patch of type "json-patch" (e.g. kubectl patch --type json or "Content-Type: application/json-patch+json") that consumes exce...

6.5CVSS6.4AI score0.1023EPSS
CVE
CVE
•added 2020/01/07 6:15 p.m.•95 views

CVE-2019-14819

A flaw was found during the upgrade of an existing OpenShift Container Platform 3.x cluster. Using CRI-O, the dockergc service account is assigned to the current namespace of the user performing the upgrade. This flaw can allow an unprivileged user to escalate their privileges to those allowed by t...

8.8CVSS8.5AI score0.00357EPSS
CVE
CVE
•added 2024/10/22 2:15 p.m.•95 views

CVE-2024-50311

A denial of service (DoS) vulnerability was found in OpenShift. This flaw allows attackers to exploit the GraphQL batching functionality. The vulnerability arises when multiple queries can be sent within a single request, enabling an attacker to submit a request containing thousands of aliases in o...

6.5CVSS6.7AI score0.00094EPSS
CVE
CVE
•added 2018/09/06 2:29 p.m.•94 views

CVE-2018-14632

An out of bound write can occur when patching an Openshift object using the 'oc patch' functionality in OpenShift Container Platform before 3.7. An attacker can use this flaw to cause a denial of service attack on the Openshift master api service which provides cluster management.

7.7CVSS7.1AI score0.00847EPSS
CVE
CVE
•added 2019/07/17 4:15 p.m.•93 views

CVE-2019-10354

A vulnerability in the Stapler web framework used in Jenkins 2.185 and earlier, LTS 2.176.1 and earlier allowed attackers to access view fragments directly, bypassing permission checks and possibly obtain sensitive information.

4.3CVSS4.3AI score0.00102EPSS
CVE
CVE
•added 2019/04/22 3:29 p.m.•90 views

CVE-2019-11244

In Kubernetes v1.8.x-v1.14.x, schema info is cached by kubectl in the location specified by --cache-dir (defaulting to $HOME/.kube/http-cache), written with world-writeable permissions (rw-rw-rw-). If --cache-dir is specified and pointed at a different location accessible to other users/groups, the...

5CVSS4.6AI score0.0011EPSS
CVE
CVE
•added 2020/06/03 6:15 p.m.•89 views

CVE-2020-7013

Kibana versions before 6.8.9 and 7.7.0 contain a prototype pollution flaw in TSVB. An authenticated attacker with privileges to create TSVB visualizations could insert data that would cause Kibana to execute arbitrary code. This could possibly lead to an attacker executing code with the permissions...

7.2CVSS7.8AI score0.00504EPSS
CVE
CVE
•added 2024/09/03 8:15 p.m.•89 views

CVE-2024-4629

A vulnerability was found in Keycloak. This flaw allows attackers to bypass brute force protection by exploiting the timing of login attempts. By initiating multiple login requests simultaneously, attackers can exceed the configured limits for failed attempts before the system locks them out. This ...

6.5CVSS6.6AI score0.00166EPSS
CVE
CVE
•added 2025/06/09 8:15 p.m.•88 views

CVE-2025-5914

A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, en...

9.8CVSS8.1AI score0.00029EPSS
CVE
CVE
•added 2020/03/09 4:15 p.m.•87 views

CVE-2020-1706

It has been found that in openshift-enterprise version 3.11 and openshift-enterprise versions 4.1 up to, including 4.3, multiple containers modify the permissions of /etc/passwd to make them modifiable by users other than root. An attacker with access to the running container can exploit this to mo...

7CVSS6.9AI score0.00094EPSS
CVE
CVE
•added 2024/06/12 9:15 a.m.•87 views

CVE-2024-5154

A flaw was found in cri-o. A malicious container can create a symbolic link to arbitrary files on the host via directory traversal (“../“). This flaw allows the container to read and write to arbitrary files on the host system.

8.1CVSS7.8AI score0.00932EPSS
CVE
CVE
•added 2018/09/19 7:29 p.m.•86 views

CVE-2018-3830

Kibana versions 5.3.0 to 6.4.1 had a cross-site scripting (XSS) vulnerability via the source field formatter that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.

6.1CVSS5.9AI score0.00507EPSS
Total number of security vulnerabilities266