7 matches found
CVE-2021-3636
OpenShift OpenShift before 4.8 includes an in-cluster Service CA certificate that incorrectly contains additional CA certificates. This allows an attacker who compromising any of those extra CAs to masquerade as a trusted in-cluster service, enabling potential impersonation of in-cluster services...
CVE-2019-19348
CVE-2019-19348 affects the OpenShift container image openshift/apb-base. The vulnerability is an insecure modification of /etc/passwd in the container, enabling privilege escalation for an attacker with container access. Affected versions include 4.3.5, 4.2.21, 4.1.37, and 3.11.188-4. If exploite...
CVE-2014-0234
Technical details for CVE-2014-0234 are not publicly available in the provided documents. No affected product/version/impact is specified here. Monitor for updates in the connected sources for exact remediation guidance.
CVE-2019-19346
The CVE-2019-19346 entry describes an insecure modification vulnerability in the container component openshift/mariadb-apb that allows modification of /etc/passwd, enabling privilege escalation for an attacker with container access. Affected releases include versions before 4.3.5, 4.2.21, 4.1.37,...
CVE-2020-35514
CVE-2020-35514 is an OpenShift vulnerability involving an insecure modification flaw in /etc/kubernetes/kubeconfig. The issue enables an attacker with access to a running container that mounts /etc/kubernetes or local node access to copy the kubeconfig and attempt to add a rogue node to the OpenS...
CVE-2018-10885
CVE-2018-10885 affects Red Hat OpenShift (atomic-openshift) versions before 3.10.9. A malicious network-policy configuration can trigger a crash in Openshift Routing when using the ovs-networkpolicy plugin, causing a Denial of Service on OpenShift 3.7/3.9 clusters. The Red Hat advisory notes reme...
CVE-2020-1761
OpenShift OpenShift Console stores the access token in the browser’s localStorage, enabling token exposure via physical access or a browser XSS attack. Affected versions: openshift/console before openshift/console-4. Root cause: localStorage-based token persistence in the web console. Impact is d...