Privilege Escalation Vulnerability in OpenShift's Incluster-Checks Tool
CVE-2026-15584

7.5HIGH

Key Information:

Vendor

Red Hat

Vendor
CVE Published:
13 July 2026

What is CVE-2026-15584?

A privilege escalation vulnerability exists in the incluster-checks tool for OpenShift, allowing users with standard edit roles to create privileged debug pods. These pods access the host filesystem within the shared default namespace, potentially enabling unauthorized users to execute commands and gain root access to cluster nodes. This vulnerability raises significant security concerns as it compromises the integrity and confidentiality of the OpenShift environment.

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.