Resource Management Flaw in OpenShift Container Platform by Red Hat
CVE-2026-10533

5MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Openshift Container Platform 4
Vendor: CVE Published:; 1 June 2026

What is CVE-2026-10533?

A flaw exists in OpenShift Container Platform where completed pods with a restartPolicy of 'Never' do not count towards ResourceQuota pod limits. This oversight allows a non-privileged user who can create pods within a namespace to overwhelm the system by generating excessive Kubernetes events. As these events accumulate in etcd, they may lead to significant performance degradation of the API server across the entire cluster, impacting overall system efficiency and reliability.

References

https://access.redhat.com/security/cve/CVE-2026-10533

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2483727

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 1, 2026
Vulnerability Reserved
Jun 1, 2026

Credit

Red Hat would like to thank Chris Sinclair for reporting this issue.

CVE-2026-10533 Data

JSON