Red hat Openshift Vulnerabilities

OpenShift Build Process Vulnerability Affecting Red Hat Products

CVE-2024-45497

Red HatRed Hat Fuse 77.6HIGH

Cert-Manager Vulnerability Permits CPU-Based DoS Attack

CVE-2024-12401

Red HatCert-manager Operator ...4.4MEDIUM

Pam_Access Vulnerability: Bypassing Access Restrictions through Token Manipulation

CVE-2024-10963

Red HatRed Hat Enterprise Lin...7.4HIGH

Graphql: denial of service (dos) vulnerability via graphql batching

CVE-2024-50311

Red HatRed Hat Openshift Cont...6.5MEDIUM

Graphql: information disclosure via graphql introspection in openshift

CVE-2024-50312

Red HatRed Hat Openshift Cont...5.3MEDIUM

Buildah: buildah allows arbitrary directory mount

CVE-2024-9675

Red HatRed Hat Enterprise Lin...7.8HIGH

Envoy Proxy Vulnerability Allows Header Manipulation and Request Forgery

CVE-2024-7207

Red HatOpenshift Service Mesh 29.8CRITICAL

Containers/aardvark-dns: tcp query handling flaw in aardvark-dns leading to denial of service

CVE-2024-8418

Red HatRed Hat Enterprise Lin...7.5HIGH

Authentication Bypass and Privilege Escalation Vulnerability in OpenShift AI

CVE-2024-7557

Red HatRed Hat Openshift Ai (...8.8HIGH

Segmentation Fault Vulnerability in Unbound's ub_ctx_set_fwd Function

CVE-2024-43167

Red HatRed Hat Enterprise Lin...2.8LOW

Unbound: heap-buffer-overflow in unbound

CVE-2024-43168

Red HatRed Hat Enterprise Lin...4.8MEDIUM

QEMU NBD Server Vulnerability: DoS Attack via Socket Closure

CVE-2024-7409

Red HatRed Hat Enterprise Lin...

Openshift Console Flaw Allows Data Exposure Without Proper Credential Verification

CVE-2024-7128

Red HatRed Hat Openshift Cont...5.3MEDIUM

Unauthorized Access to /API/helm/verify Endpoint in Openshift

CVE-2024-7079

Red HatRed Hat Openshift Cont...6.5MEDIUM

Undertow Vulnerability: Enabling Learning-Push Handler Can Prevent Attacks

CVE-2024-3653

Red HatRed Hat Jboss Enterpri...5.3MEDIUM

QEMU qemu-img Vulnerability: Memory or CPU Consumption Denial of Service

CVE-2024-4467

Red HatAdvanced Virtualizatio...7.8HIGH

Signal Handler Race Condition in OpenSSH's Server

CVE-2024-6387

Red HatRed Hat Enterprise Lin...🥇📈👾🟡📰8.1HIGH

Container Orchestration Flaw Allows Arbitrary File Access

CVE-2024-5154

Red HatRed Hat Openshift Cont...8.1HIGH

Information Disclosure Flaw in OpenShift Image Registry Operator Could Lead to Identity Theft

CVE-2024-4369

Red HatRed Hat Openshift Cont...6.8MEDIUM

Arbitrary Systemd Property Injection Vulnerability in cri-o

CVE-2024-3154

Red HatRed Hat Openshift Cont...👾🟡7.2HIGH

Mirror-registry Flaw Exposes Quay Database Secrets

CVE-2024-3623

Red HatMirror Registry For Re...8.1HIGH

Mirror-registry Flaw Affects Quay Instances, Leading to Session Cookie Tampering

CVE-2024-3622

Red HatMirror Registry For Re...8.8HIGH

Plain Text Database Vulnerability Exposes Quay's Redis Instance to Attack

CVE-2024-3625

Red HatMirror Registry For Re...7.3HIGH

Quay's Database Vulnerability: Plain-Text Storage Exposes Sensitive Data

CVE-2024-3624

Red HatMirror Registry For Re...7.3HIGH

Remote Attacker May Discover Repository Pull Secret via Basic Login Credentials

CVE-2024-1139

Red HatRed Hat Openshift Cont...7.7HIGH

Vulnerability Published:

Sort By:

31 December 2024

OpenShift Build Process Vulnerability Affecting Red Hat Products

12 December 2024

Cert-Manager Vulnerability Permits CPU-Based DoS Attack

7 November 2024

Pam_Access Vulnerability: Bypassing Access Restrictions through Token Manipulation

22 October 2024

Graphql: denial of service (dos) vulnerability via graphql batching

Graphql: information disclosure via graphql introspection in openshift

9 October 2024

Buildah: buildah allows arbitrary directory mount

19 September 2024

Envoy Proxy Vulnerability Allows Header Manipulation and Request Forgery

4 September 2024

Containers/aardvark-dns: tcp query handling flaw in aardvark-dns leading to denial of service

12 August 2024

Authentication Bypass and Privilege Escalation Vulnerability in OpenShift AI

Segmentation Fault Vulnerability in Unbound's ub_ctx_set_fwd Function

Unbound: heap-buffer-overflow in unbound

5 August 2024

QEMU NBD Server Vulnerability: DoS Attack via Socket Closure

26 July 2024

Openshift Console Flaw Allows Data Exposure Without Proper Credential Verification

24 July 2024

Unauthorized Access to /API/helm/verify Endpoint in Openshift

8 July 2024

Undertow Vulnerability: Enabling Learning-Push Handler Can Prevent Attacks

2 July 2024

QEMU qemu-img Vulnerability: Memory or CPU Consumption Denial of Service

1 July 2024

Signal Handler Race Condition in OpenSSH's Server

12 June 2024

Container Orchestration Flaw Allows Arbitrary File Access

1 May 2024

Information Disclosure Flaw in OpenShift Image Registry Operator Could Lead to Identity Theft

26 April 2024

Arbitrary Systemd Property Injection Vulnerability in cri-o

25 April 2024

Mirror-registry Flaw Exposes Quay Database Secrets

Mirror-registry Flaw Affects Quay Instances, Leading to Session Cookie Tampering

Plain Text Database Vulnerability Exposes Quay's Redis Instance to Attack

Quay's Database Vulnerability: Plain-Text Storage Exposes Sensitive Data

Remote Attacker May Discover Repository Pull Secret via Basic Login Credentials