Lucene search

K
RedhatOpenshift Container Platform

266 matches found

CVE
CVE
added 2020/12/02 1:15 a.m.84 views

CVE-2020-27816

The elasticsearch-operator does not validate the namespace where kibana logging resource is created and due to that it is possible to replace the original openshift-logging console link (kibana console) to different one, created based on the new CR for the new kibana resource. This could lead to an...

6.1CVSS6.2AI score0.00167EPSS
CVE
CVE
added 2025/03/03 5:15 p.m.84 views

CVE-2025-0678

A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciously crafted filesystem may lead some of...

7.8CVSS6.8AI score0.00026EPSS
CVE
CVE
added 2019/03/08 9:29 p.m.83 views

CVE-2019-1003031

A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM.

9.9CVSS9.6AI score0.1239EPSS
CVE
CVE
added 2019/03/08 9:29 p.m.83 views

CVE-2019-1003034

A sandbox bypass vulnerability exists in Jenkins Job DSL Plugin 1.71 and earlier in job-dsl-core/src/main/groovy/javaposse/jobdsl/dsl/AbstractDslScriptLoader.groovy, job-dsl-plugin/build.gradle, job-dsl-plugin/src/main/groovy/javaposse/jobdsl/plugin/JobDslWhitelist.groovy, job-dsl-plugin/src/main/g...

9.9CVSS9.7AI score0.01915EPSS
CVE
CVE
added 2019/03/28 6:29 p.m.83 views

CVE-2019-1003040

A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.55 and earlier allows attackers to invoke arbitrary constructors in sandboxed scripts.

9.8CVSS9.4AI score0.02252EPSS
CVE
CVE
added 2022/09/01 9:15 p.m.83 views

CVE-2022-1632

An Improper Certificate Validation attack was found in Openshift. A re-encrypt Route with destinationCACertificate explicitly set to the default serviceCA skips internal Service TLS certificate validation. This flaw allows an attacker to exploit an invalid certificate, resulting in a loss of confid...

6.5CVSS6.3AI score0.00218EPSS
CVE
CVE
added 2019/02/06 4:29 p.m.82 views

CVE-2019-1003010

A cross-site request forgery vulnerability exists in Jenkins Git Plugin 3.9.1 and earlier in src/main/java/hudson/plugins/git/GitTagAction.java that allows attackers to create a Git tag in a workspace and attach corresponding metadata to a build record.

4.3CVSS4.3AI score0.0069EPSS
CVE
CVE
added 2019/03/28 6:29 p.m.82 views

CVE-2019-1003041

A sandbox bypass vulnerability in Jenkins Pipeline: Groovy Plugin 2.64 and earlier allows attackers to invoke arbitrary constructors in sandboxed scripts.

9.8CVSS9.4AI score0.02252EPSS
CVE
CVE
added 2021/05/14 9:15 p.m.81 views

CVE-2020-27833

A Zip Slip vulnerability was found in the oc binary in openshift-clients where an arbitrary file write is achieved by using a specially crafted raw container image (.tar file) which contains symbolic links. The vulnerability is limited to the command oc image extract. If a symbolic link is first cr...

7.1CVSS7.3AI score0.0013EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.79 views

CVE-2019-10150

It was found that OpenShift Container Platform versions 3.6.x - 4.6.0 does not perform SSH Host Key checking when using ssh key authentication during builds. An attacker, with the ability to redirect network traffic, could use this to alter the resulting build output.

5.9CVSS5.8AI score0.00304EPSS
CVE
CVE
added 2019/11/25 11:15 a.m.79 views

CVE-2019-14891

A flaw was found in cri-o, as a result of all pod-related processes being placed in the same memory cgroup. This can result in container management (conmon) processes being killed if a workload process triggers an out-of-memory (OOM) condition for the cgroup. An attacker could abuse this flaw to ge...

6CVSS4.8AI score0.00316EPSS
CVE
CVE
added 2019/07/11 7:15 p.m.79 views

CVE-2019-3889

A reflected XSS vulnerability exists in authorization flow of OpenShift Container Platform versions: openshift-online-3, openshift-enterprise-3.4 through 3.7 and openshift-enterprise-3.9 through 3.11. An attacker could use this flaw to steal authorization data by getting them to click on a maliciou...

5.4CVSS5AI score0.00353EPSS
CVE
CVE
added 2024/07/24 4:15 p.m.79 views

CVE-2024-7079

A flaw was found in the Openshift console. The /API/helm/verify endpoint is tasked to fetch and verify the installation of a Helm chart from a URI that is remote HTTP/HTTPS or local. Access to this endpoint is gated by the authHandlerWithUser() middleware function. Contrary to its name, this middle...

6.5CVSS5.5AI score0.00329EPSS
Web
CVE
CVE
added 2018/09/05 5:29 p.m.75 views

CVE-2016-1000232

NodeJS Tough-Cookie version 2.2.2 contains a Regular Expression Parsing vulnerability in HTTP request Cookie Header parsing that can result in Denial of Service. This attack appear to be exploitable via Custom HTTP header passed by client. This vulnerability appears to have been fixed in 2.3.0.

5.3CVSS5.3AI score0.00921EPSS
CVE
CVE
added 2019/07/31 1:15 p.m.75 views

CVE-2019-10355

A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of type casts allowed attackers to execute arbitrary code in sandboxed scripts.

8.8CVSS8.8AI score0.00042EPSS
CVE
CVE
added 2019/07/31 1:15 p.m.74 views

CVE-2019-10357

A missing permission check in Jenkins Pipeline: Shared Groovy Libraries Plugin 2.14 and earlier allowed users with Overall/Read access to obtain limited information about the content of SCM repositories referenced by global libraries.

4.3CVSS4.4AI score0.00064EPSS
CVE
CVE
added 2025/06/09 8:15 p.m.73 views

CVE-2025-5917

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to unpredictabl...

5CVSS7.3AI score0.00015EPSS
CVE
CVE
added 2021/03/19 9:15 p.m.72 views

CVE-2019-10200

A flaw was discovered in OpenShift Container Platform 4 where, by default, users with access to create pods also have the ability to schedule workloads on master nodes. Pods with permission to access the host network, running on master nodes, can retrieve security credentials for the master AWS IAM...

9CVSS6.9AI score0.0039EPSS
CVE
CVE
added 2019/02/06 4:29 p.m.71 views

CVE-2019-1003012

A data modification vulnerability exists in Jenkins Blue Ocean Plugins 1.10.1 and earlier in blueocean-core-js/src/js/bundleStartup.js, blueocean-core-js/src/js/fetch.ts, blueocean-core-js/src/js/i18n/i18n.js, blueocean-core-js/src/js/urlconfig.js, blueocean-rest/src/main/java/io/jenkins/blueocean/...

6.5CVSS6.3AI score0.00163EPSS
CVE
CVE
added 2021/06/02 5:15 p.m.71 views

CVE-2021-3529

A flaw was found in noobaa-core in versions before 5.7.0. This flaw results in the name of an arbitrarily URL being copied into an HTML document as plain text between tags, including potentially a payload script. The input was echoed unmodified in the application response, resulting in arbitrary Ja...

7.1CVSS6.7AI score0.00225EPSS
CVE
CVE
added 2018/12/10 2:29 p.m.70 views

CVE-2018-1000865

A sandbox bypass vulnerability exists in Script Security Plugin 1.47 and earlier in groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox/SandboxTransformer.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM, if plugins using the Groovy sa...

8.8CVSS8.9AI score0.00652EPSS
CVE
CVE
added 2018/06/15 1:29 p.m.70 views

CVE-2018-1085

openshift-ansible before versions 3.9.23, 3.7.46 deploys a misconfigured etcd file that causes the SSL client certificate authentication to be disabled. Quotations around the values of ETCD_CLIENT_CERT_AUTH and ETCD_PEER_CLIENT_CERT_AUTH in etcd.conf result in etcd being configured to allow remote ...

10CVSS9.3AI score0.01478EPSS
CVE
CVE
added 2018/08/13 5:29 p.m.69 views

CVE-2017-15138

The OpenShift Enterprise cluster-read can access webhook tokens which would allow an attacker with sufficient privileges to view confidential webhook tokens.

5CVSS5AI score0.00165EPSS
CVE
CVE
added 2021/03/19 9:15 p.m.69 views

CVE-2019-10225

A flaw was found in atomic-openshift of openshift-4.2 where the basic-user RABC role in OpenShift Container Platform doesn't sufficiently protect the GlusterFS StorageClass against leaking of the restuserkey. An attacker with basic-user permissions is able to obtain the value of restuserkey, and us...

6.5CVSS6.2AI score0.00147EPSS
CVE
CVE
added 2022/04/01 11:15 p.m.69 views

CVE-2021-20238

It was found in OpenShift Container Platform 4 that ignition config, served by the Machine Config Server, can be accessed externally from clusters without authentication. The MCS endpoint (port 22623) provides ignition configuration used for bootstrapping Nodes and can include some sensitive data, ...

4.3CVSS4.2AI score0.00142EPSS
CVE
CVE
added 2018/07/16 8:29 p.m.68 views

CVE-2017-15137

The OpenShift image import whitelist failed to enforce restrictions correctly when running commands such as "oc tag", for example. This could allow a user with access to OpenShift to run images from registries that should not be allowed.

5.3CVSS5.3AI score0.00167EPSS
CVE
CVE
added 2019/02/06 4:29 p.m.67 views

CVE-2019-1003013

An cross-site scripting vulnerability exists in Jenkins Blue Ocean Plugins 1.10.1 and earlier in blueocean-commons/src/main/java/io/jenkins/blueocean/commons/stapler/Export.java, blueocean-commons/src/main/java/io/jenkins/blueocean/commons/stapler/export/ExportConfig.java, blueocean-commons/src/mai...

5.4CVSS5.1AI score0.00042EPSS
CVE
CVE
added 2019/02/06 4:29 p.m.67 views

CVE-2019-1003014

An cross-site scripting vulnerability exists in Jenkins Config File Provider Plugin 3.4.1 and earlier in src/main/resources/lib/configfiles/configfiles.jelly that allows attackers with permission to define shared configuration files to execute arbitrary JavaScript when a user attempts to delete the...

4.8CVSS4.9AI score0.00067EPSS
CVE
CVE
added 2025/06/09 8:15 p.m.67 views

CVE-2025-5915

A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer-Schieber (LZSS) window. This means the library may attempt to read beyond the allocated memory buffer, which can...

6.6CVSS6.7AI score0.00014EPSS
CVE
CVE
added 2019/07/31 1:15 p.m.66 views

CVE-2019-10356

A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of method pointer expressions allowed attackers to execute arbitrary code in sandboxed scripts.

8.8CVSS8.8AI score0.00042EPSS
CVE
CVE
added 2025/03/03 5:15 p.m.66 views

CVE-2024-45782

A flaw was found in the HFS filesystem. When reading an HFS volume's name at grub_fs_mount(), the HFS filesystem driver performs a strcpy() using the user-provided volume name as input without properly validating the volume name's length. This issue may read to a heap-based out-of-bounds writer, im...

7.8CVSS6.3AI score0.00025EPSS
CVE
CVE
added 2025/06/09 8:15 p.m.66 views

CVE-2025-5916

A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when processing a Web Archive (WARC) file that claims to have more than INT64_MAX - 4 content bytes. An attacker could craft a malicious WARC archive to induce this overflow, ...

5.6CVSS7.2AI score0.00017EPSS
CVE
CVE
added 2018/12/10 2:29 p.m.65 views

CVE-2018-1000866

A sandbox bypass vulnerability exists in Pipeline: Groovy Plugin 2.59 and earlier in groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox/SandboxTransformer.java, groovy-cps/lib/src/main/java/com/cloudbees/groovy/cps/SandboxCpsTransformer.java that allows attackers with Job/Configure permission,...

8.8CVSS8.9AI score0.00652EPSS
CVE
CVE
added 2022/08/22 3:15 p.m.64 views

CVE-2020-27836

A flaw was found in cluster-ingress-operator. A change to how the router-default service allows only certain IP source ranges could allow an attacker to access resources that would otherwise be restricted to specified IP ranges. The highest threat from this vulnerability is to data confidentiality ...

9.8CVSS9.2AI score0.00716EPSS
CVE
CVE
added 2025/03/03 5:15 p.m.64 views

CVE-2024-45778

A stack overflow flaw was found when reading a BFS file system. A crafted BFS filesystem may lead to an uncontrolled loop, causing grub2 to crash.

5.5CVSS4.5AI score0.00016EPSS
CVE
CVE
added 2019/02/05 5:29 p.m.63 views

CVE-2019-3818

The kube-rbac-proxy container before version 0.4.1 as used in Red Hat OpenShift Container Platform does not honor TLS configurations, allowing for use of insecure ciphers and TLS 1.0. An attacker could target traffic sent over a TLS connection with a weak configuration and potentially break the enc...

7.5CVSS7.5AI score0.00078EPSS
CVE
CVE
added 2019/02/06 4:29 p.m.62 views

CVE-2019-1003011

An information exposure and denial of service vulnerability exists in Jenkins Token Macro Plugin 2.5 and earlier in src/main/java/org/jenkinsci/plugins/tokenmacro/Parser.java, src/main/java/org/jenkinsci/plugins/tokenmacro/TokenMacro.java, src/main/java/org/jenkinsci/plugins/tokenmacro/impl/Abstrac...

8.1CVSS7.6AI score0.00589EPSS
CVE
CVE
added 2019/11/25 3:15 p.m.62 views

CVE-2019-10213

OpenShift Container Platform, versions 4.1 and 4.2, does not sanitize secret data written to pod logs when the log level in a given operator is set to Debug or higher. A low privileged user could read pod logs to discover secret material if the log level has already been modified in an operator by ...

6.5CVSS6.1AI score0.00451EPSS
CVE
CVE
added 2019/02/20 9:29 p.m.59 views

CVE-2019-1003024

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.52 and earlier in RejectASTTransformsCustomizer.java that allows attackers with Overall/Read permission to provide a Groovy script to an HTTP endpoint that can result in arbitrary code execution on the Jenkins master JVM.

8.8CVSS8.8AI score0.0032EPSS
CVE
CVE
added 2019/11/05 12:15 p.m.59 views

CVE-2019-10223

A security issue was discovered in the kube-state-metrics versions v1.7.0 and v1.7.1. An experimental feature was added to the v1.7.0 release that enabled annotations to be exposed as metrics. By default, the kube-state-metrics metrics only expose metadata about Secrets. However, a combination of t...

6.5CVSS6.4AI score0.0051EPSS
CVE
CVE
added 2025/06/16 4:15 p.m.57 views

CVE-2025-6170

A flaw was found in the interactive shell of the xmllint command-line tool, used for parsing XML files. When a user inputs an overly long command, the program does not check the input size properly, which can cause it to crash. This issue might allow attackers to run harmful code in rare configurat...

2.5CVSS3.9AI score0.00021EPSS
CVE
CVE
added 2021/03/24 5:15 p.m.55 views

CVE-2019-19354

An insecure modification vulnerability in the /etc/passwd file was found in the operator-framework/hadoop as shipped in Red Hat Openshift 4. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges.

7.8CVSS7.6AI score0.00047EPSS
CVE
CVE
added 2019/04/01 3:29 p.m.55 views

CVE-2019-3876

A flaw was found in the /oauth/token/request custom endpoint of the OpenShift OAuth server allowing for XSS generation of CLI tokens due to missing X-Frame-Options and CSRF protections. If not otherwise prevented, a separate XSS vulnerability via JavaScript could further allow for the extraction of...

6.3CVSS5.9AI score0.00203EPSS
CVE
CVE
added 2024/08/02 9:16 p.m.55 views

CVE-2024-3056

A flaw was found in Podman. This issue may allow an attacker to create a specially crafted container that, when configured to share the same IPC with at least one other container, can create a large number of IPC resources in /dev/shm. The malicious container will continue to exhaust resources unti...

7.7CVSS5.1AI score0.00232EPSS
CVE
CVE
added 2025/06/09 8:15 p.m.55 views

CVE-2025-5918

A vulnerability has been identified in the libarchive library. This flaw can be triggered when file streams are piped into bsdtar, potentially allowing for reading past the end of the file. This out-of-bounds read can lead to unintended consequences, including unpredictable program behavior, memory...

6.6CVSS6.9AI score0.00018EPSS
CVE
CVE
added 2019/07/30 11:15 p.m.54 views

CVE-2019-10165

OpenShift Container Platform before version 4.1.3 writes OAuth tokens in plaintext to the audit logs for the Kubernetes API server and OpenShift API server. A user with sufficient privileges could recover OAuth tokens from these audit logs and use them to access other resources.

2.3CVSS4AI score0.00059EPSS
CVE
CVE
added 2020/05/12 2:15 p.m.54 views

CVE-2020-10706

A flaw was found in OpenShift Container Platform where OAuth tokens are not encrypted when the encryption of data at rest is enabled. This flaw allows an attacker with access to a backup to obtain OAuth tokens and then use them to log into the cluster as any user who logged into the cluster via the...

6.6CVSS6.4AI score0.00015EPSS
CVE
CVE
added 2023/10/05 2:15 p.m.54 views

CVE-2022-3248

A flaw was found in OpenShift API, as admission checks do not enforce "custom-host" permissions. This issue could allow an attacker to violate the boundaries, as permissions will not be applied.

7.5CVSS5.7AI score0.00046EPSS
CVE
CVE
added 2023/10/05 1:15 p.m.54 views

CVE-2022-4145

A content spoofing flaw was found in OpenShift's OAuth endpoint. This flaw allows a remote, unauthenticated attacker to inject text into a webpage, enabling the obfuscation of a phishing operation.

5.3CVSS4.6AI score0.00081EPSS
CVE
CVE
added 2021/03/24 5:15 p.m.53 views

CVE-2019-19353

An insecure modification vulnerability in the /etc/passwd file was found in the operator-framework/hive as shipped in Red Hat Openshift 4. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges.

7CVSS6.9AI score0.00036EPSS
Total number of security vulnerabilities266