Redhat Openshift Container Platform — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat Openshift Container Platform, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2022-4361 — CVSS 10.0 (critical): Keycloak, an open-source identity and access management solution, has a cross-site scripting (XSS) vulnerability in the SAML or OIDC…
CVE-2019-1003034 — CVSS 9.9 (critical): A sandbox bypass vulnerability exists in Jenkins Job DSL Plugin 1.71 and earlier in job-dsl-core/src/main/groovy/javaposse/jobdsl/dsl/Abstra…
CVE-2019-1003031 — CVSS 9.9 (critical): A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript…
CVE-2019-3899 — CVSS 9.8 (critical): It was found that default configuration of Heketi does not require any authentication potentially exposing the management interface to…
CVE-2019-1003040 — CVSS 9.8 (critical): A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.55 and earlier allows attackers to invoke arbitrary constructors in…
CVE-2019-1003041 — CVSS 9.8 (critical): A sandbox bypass vulnerability in Jenkins Pipeline: Groovy Plugin 2.64 and earlier allows attackers to invoke arbitrary constructors in…
CVE-2019-14379 — CVSS 9.8 (critical): SubTypeValidator.java in FasterXML jackson-databind before 2.9.9.2 mishandles default typing when ehcache is used (because of…
CVE-2019-14892 — CVSS 9.8 (critical): A flaw was discovered in jackson-databind in versions before 2.9.10, 2.8.11.5 and 2.6.7.3, where it would permit polymorphic…
CVE-2018-1002105 — CVSS 9.8 (critical): In all Kubernetes versions prior to v1.10.11, v1.11.5, and v1.12.3, incorrect handling of error responses to proxied upgrade requests in…
CVE-2018-11307 — CVSS 9.8 (critical): An issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.5. Use of Jackson default typing along with a gadget class from…
CVE-2017-7481 — CVSS 9.8 (critical): Ansible before versions 2.3.1.0 and 2.4.0.0 fails to properly mark lookup-plugin results as unsafe. If an attacker could control the…
CVE-2018-12910 — CVSS 9.8 (critical): The get_cookies function in soup-cookie-jar.c in libsoup 2.63.2 allows attackers to have unspecified impact via an empty hostname.
CVE-2017-15095 — CVSS 9.8 (critical): A deserialization flaw was discovered in the jackson-databind in versions before 2.8.10 and 2.9.1, which could allow an unauthenticated…
CVE-2018-14718 — CVSS 9.8 (critical): FasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code by leveraging failure to block the…
CVE-2018-14719 — CVSS 9.8 (critical): FasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code by leveraging failure to block the…
CVE-2018-14720 — CVSS 9.8 (critical): FasterXML jackson-databind 2.x before 2.9.7 might allow attackers to conduct external XML entity (XXE) attacks by leveraging failure to…
CVE-2020-27836 — CVSS 9.8 (critical): A flaw was found in cluster-ingress-operator. A change to how the router-default service allows only certain IP source ranges could allow…
CVE-2018-17246 — CVSS 9.8 (critical): Kibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plugin. An attacker with access to the…
CVE-2018-18311 — CVSS 9.8 (critical): Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.
CVE-2018-19360 — CVSS 9.8 (critical): FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the…
CVE-2018-19361 — CVSS 9.8 (critical): FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the openjpa…
CVE-2018-19362 — CVSS 9.8 (critical): FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the…
CVE-2020-27846 — CVSS 9.8 (critical): A signature verification vulnerability exists in crewjam/saml. This flaw allows an attacker to bypass SAML Authentication. The highest…
CVE-2017-17485 — CVSS 9.8 (critical): FasterXML jackson-databind through 2.8.10 and 2.9.x through 2.9.3 allows unauthenticated remote code execution because of an incomplete fix…
CVE-2017-7525 — CVSS 9.8 (critical): A deserialization flaw was discovered in the jackson-databind, versions before 2.6.7.1, 2.7.9.1 and 2.8.9, which could allow an…
CVE-2015-8103 — CVSS 9.8 (critical): The Jenkins CLI subsystem in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to execute arbitrary code via a crafted…
CVE-2019-9636 — CVSS 9.8 (critical): Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding (with an incorrect netloc) during…
CVE-2019-1010238 — CVSS 9.8 (critical): Gnome Pango 1.42 and later is affected by: Buffer Overflow. The impact is: The heap based buffer overflow can be used to get code…
CVE-2019-14813 — CVSS 9.8 (critical): A flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it did not properly secure its privileged…
CVE-2026-4480 — CVSS 9.0 (critical): A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with…
CVE-2026-4408 — CVSS 9.0 (critical): A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic domain controllers that use…
CVE-2018-1085 — CVSS 9.0 (critical): openshift-ansible before versions 3.9.23, 3.7.46 deploys a misconfigured etcd file that causes the SSL client certificate authentication to…
CVE-2019-1003001 — CVSS 8.8 (high): A sandbox bypass vulnerability exists in Pipeline: Groovy Plugin 2.61 and earlier in src/main/java/org/jenkinsci/plugins/workflow/cps/CpsFlo…
CVE-2019-1003002 — CVSS 8.8 (high): A sandbox bypass vulnerability exists in Pipeline: Declarative Plugin 1.3.3 and earlier in pipeline-model-definition/src/main/groovy/org/jen…
CVE-2019-10356 — CVSS 8.8 (high): A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of method pointer expressions…
CVE-2019-14287 — CVSS 8.8 (high): In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules…
CVE-2018-1000865 — CVSS 8.8 (high): A sandbox bypass vulnerability exists in Script Security Plugin 1.47 and earlier in groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox/…
CVE-2018-1000866 — CVSS 8.8 (high): A sandbox bypass vulnerability exists in Pipeline: Groovy Plugin 2.59 and earlier in groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox…
CVE-2022-1227 — CVSS 8.8 (high): A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this…
CVE-2026-1784 — CVSS 8.8 (high): The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks…
CVE-2021-3344 — CVSS 8.8 (high): A privilege escalation flaw was found in OpenShift builder. During build time, credentials outside the build context are automatically…
CVE-2019-1003024 — CVSS 8.8 (high): A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.52 and earlier in RejectASTTransformsCustomizer.java that allows…
CVE-2019-1003000 — CVSS 8.8 (high): A sandbox bypass vulnerability exists in Script Security Plugin 1.49 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandb…
CVE-2019-10355 — CVSS 8.8 (high): A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of type casts allowed attackers…
CVE-2020-14298 — CVSS 8.8 (high): The version of docker as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 advisory included an incorrect version of runc…
CVE-2020-25660 — CVSS 8.8 (high): A flaw was found in the Cephx authentication protocol in versions before 15.2.6 and before 14.2.14, where it does not verify Ceph clients…
CVE-2019-10384 — CVSS 8.8 (high): Jenkins 2.191 and earlier, LTS 2.176.2 and earlier allowed users to obtain CSRF tokens without an associated web session ID, resulting in…
CVE-2021-20182 — CVSS 8.8 (high): A privilege escalation flaw was found in openshift4/ose-docker-builder. The build container runs with high privileges using a chrooted…
CVE-2019-13734 — CVSS 8.8 (high): Out of bounds write in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a…
CVE-2019-0542 — CVSS 8.8 (high): A remote code execution vulnerability exists in Xterm.js when the component mishandles special characters, aka "Xterm Remote Code Execution…
CVE-2020-11100 — CVSS 8.8 (high): In hpack_dht_insert in hpack-tbl.c in the HPACK decoder in HAProxy 1.8 through 2.x before 2.1.4, a remote attacker can write arbitrary…
CVE-2019-14819 — CVSS 8.8 (high): A flaw was found during the upgrade of an existing OpenShift Container Platform 3.x cluster. Using CRI-O, the dockergc service account is…
CVE-2020-10696 — CVSS 8.8 (high): A path traversal flaw was found in Buildah in versions before 1.14.5. This flaw allows an attacker to trick a user into building a…
CVE-2022-2132 — CVSS 8.6 (high): A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by…
CVE-2018-10843 — CVSS 8.5 (high): source-to-image component of Openshift Container Platform before versions atomic-openshift 3.7.53, atomic-openshift 3.9.31 is vulnerable to…
CVE-2026-0966 — CVSS 8.2 (high): A flaw was found in libssh. The API function `ssh_get_hexa()` is vulnerable to a denial of service when processing zero-length input. This…
CVE-2018-1000863 — CVSS 8.2 (high): A data modification vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in User.java, IdStrategy.java that allows…
CVE-2023-1668 — CVSS 8.2 (high): A flaw was found in openvswitch (OVS). When processing an IP packet with protocol 0, OVS will install the datapath flow without the action…
CVE-2025-5318 — CVSS 8.1 (high): A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle function due…
CVE-2019-6974 — CVSS 8.1 (high): In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race…
CVE-2019-2698 — CVSS 8.1 (high): Vulnerability in the Java SE component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 7u211 and…
CVE-2018-18559 — CVSS 8.1 (high): In the Linux kernel through 4.19, a use-after-free can occur due to a race condition between fanout_add from setsockopt and bind on an…
CVE-2024-6387 — CVSS 8.1 (high): A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle…
CVE-2018-5968 — CVSS 8.1 (high): FasterXML jackson-databind through 2.8.11 and 2.9.x through 2.9.3 allows unauthenticated remote code execution because of an incomplete fix…
CVE-2024-5154 — CVSS 8.1 (high): A flaw was found in cri-o. A malicious container can create a symbolic link to arbitrary files on the host via directory traversal…
CVE-2024-1132 — CVSS 8.1 (high): A flaw was found in Keycloak, where it does not properly validate URLs included in a redirect. This issue could allow an attacker to…
CVE-2019-1003011 — CVSS 8.1 (high): An information exposure and denial of service vulnerability exists in Jenkins Token Macro Plugin 2.5 and earlier in src/main/java/org/jenkin…
CVE-2023-4853 — CVSS 8.1 (high): A flaw was found in Quarkus where HTTP security policies are not sanitizing certain character permutations correctly when accepting…
CVE-2019-1003049 — CVSS 8.1 (high): Users who cached their CLI authentication before Jenkins was updated to 2.150.2 and newer, or 2.160 and newer, would remain authenticated…
CVE-2019-11247 — CVSS 8.1 (high): The Kubernetes kube-apiserver mistakenly allows access to a cluster-scoped custom resource if the request is made as if the resource were…
CVE-2023-1260 — CVSS 8.0 (high): An authentication bypass vulnerability was discovered in kube-apiserver. This issue could allow a remote, authenticated attacker who has…
CVE-2026-3012 — CVSS 8.0 (high): A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may…
CVE-2022-4039 — CVSS 8.0 (high): A flaw was found in Red Hat Single Sign-On for OpenShift container images, which are configured with an unsecured management interface…
CVE-2021-20194 — CVSS 7.8 (high): There is a vulnerability in the linux kernel versions higher than 5.2 (if kernel compiled with config params CONFIG_BPF_SYSCALL=y…
CVE-2018-19477 — CVSS 7.8 (high): psi/zfjbig2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a JBIG2Decode…
CVE-2018-19476 — CVSS 7.8 (high): psi/zicc.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a setcolorspace…
CVE-2018-19475 — CVSS 7.8 (high): psi/zdevice2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because available stack…
CVE-2024-9675 — CVSS 7.8 (high): A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache…
CVE-2018-16540 — CVSS 7.8 (high): In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files to the builtin PDF14 converter could use a…
CVE-2020-27786 — CVSS 7.8 (high): A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl…
CVE-2024-45782 — CVSS 7.8 (high): A flaw was found in the HFS filesystem. When reading an HFS volume's name at grub_fs_mount(), the HFS filesystem driver performs a strcpy()…
CVE-2025-0678 — CVSS 7.8 (high): A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module uses user-controlled parameters from the…
CVE-2019-14835 — CVSS 7.8 (high): A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue…
CVE-2020-1712 — CVSS 7.8 (high): A heap use-after-free vulnerability was found in systemd before version v245-rc1, where asynchronous Polkit queries are performed while…
CVE-2026-48864 — CVSS 7.8 (high): A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled compressed data within…
CVE-2026-6846 — CVSS 7.8 (high): A flaw was found in binutils. A heap-buffer-overflow vulnerability exists when processing a specially crafted XCOFF (Extended Common Object…
CVE-2025-5914 — CVSS 7.8 (high): A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This…
CVE-2019-14811 — CVSS 7.8 (high): A flaw was found in, ghostscript versions prior to 9.50, in the .pdf_hook_DSC_Creator procedure where it did not properly secure its…
CVE-2019-19354 — CVSS 7.8 (high): An insecure modification vulnerability in the /etc/passwd file was found in the operator-framework/hadoop as shipped in Red Hat Openshift…
CVE-2019-14817 — CVSS 7.8 (high): A flaw was found in, ghostscript versions prior to 9.50, in the .pdfexectoken and other procedures where it did not properly secure its…
CVE-2018-14632 — CVSS 7.7 (high): An out of bound write can occur when patching an Openshift object using the 'oc patch' functionality in OpenShift Container Platform before…
CVE-2024-3056 — CVSS 7.7 (high): A flaw was found in Podman. This issue may allow an attacker to create a specially crafted container that, when configured to share the…
CVE-2026-42965 — CVSS 7.7 (high): A flaw was found in the OpenShift Router. A user with EndpointSlice write access can exploit this vulnerability by creating a Service…
CVE-2023-6563 — CVSS 7.7 (high): An unconstrained memory consumption vulnerability was discovered in Keycloak. It can be triggered in environments which have millions of…
CVE-2025-13601 — CVSS 7.7 (high): A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string()…
CVE-2022-27649 — CVSS 7.5 (high): A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was found in Moby…
CVE-2018-12022 — CVSS 7.5 (high): An issue was discovered in FasterXML jackson-databind prior to 2.7.9.4, 2.8.11.2, and 2.9.6. When Default Typing is enabled (either…
CVE-2018-12023 — CVSS 7.5 (high): An issue was discovered in FasterXML jackson-databind prior to 2.7.9.4, 2.8.11.2, and 2.9.6. When Default Typing is enabled (either…
CVE-2018-12115 — CVSS 7.5 (high): In all versions of Node.js prior to 6.14.4, 8.11.4 and 10.9.0 when used with UCS-2 encoding (recognized by Node.js under the names…
CVE-2018-14645 — CVSS 7.5 (high): A flaw was discovered in the HPACK decoder of HAProxy, before 1.8.14, that is used for HTTP/2. An out-of-bounds read access in…
CVE-2018-20102 — CVSS 7.5 (high): An out-of-bounds read in dns_validate_dns_response in dns.c was discovered in HAProxy through 1.8.14. Due to a missing check when…
CVE-2018-20103 — CVSS 7.5 (high): An issue was discovered in dns.c in HAProxy through 1.8.14. In the case of a compressed pointer, a crafted packet can trigger infinite…
CVE-2018-20615 — CVSS 7.5 (high): An out-of-bounds read issue was discovered in the HTTP/2 protocol decoder in HAProxy 1.8.x and 1.9.x through 1.9.0 which can result in a…
CVE-2019-11253 — CVSS 7.5 (high): Improper input validation in the Kubernetes API server in versions v1.0-1.12 and versions prior to v1.13.12, v1.14.8, v1.15.5, and v1.16.2…
CVE-2019-16884 — CVSS 7.5 (high): runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because…
CVE-2019-2602 — CVSS 7.5 (high): Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected…
CVE-2019-3818 — CVSS 7.5 (high): The kube-rbac-proxy container before version 0.4.1 as used in Red Hat OpenShift Container Platform does not honor TLS configurations…
CVE-2019-9514 — CVSS 7.5 (high): Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of…
CVE-2019-9515 — CVSS 7.5 (high): Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial of service. The attacker sends a stream of…
CVE-2020-10752 — CVSS 7.5 (high): A flaw was found in the OpenShift API Server, where it failed to sufficiently protect OAuthTokens by leaking them into the logs when an API…
CVE-2020-27827 — CVSS 7.5 (high): A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to…
CVE-2020-8945 — CVSS 7.5 (high): The proglottis Go wrapper before 0.1.1 for the GPGME library has a use-after-free, as demonstrated by use for container image pulls by…
CVE-2021-20270 — CVSS 7.5 (high): An infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 may lead to denial of service when performing syntax highlighting of a…
CVE-2021-4104 — CVSS 7.5 (high): JMSAppender in Log4j 1.2 is vulnerable to deserialization of untrusted data when the attacker has write access to the Log4j configuration…
CVE-2022-0711 — CVSS 7.5 (high): A flaw was found in the way HAProxy processed HTTP responses containing the "Set-Cookie2" header. This flaw could allow an attacker to send…
CVE-2022-1708 — CVSS 7.5 (high): A vulnerability was found in CRI-O that causes memory or disk space exhaustion on the node for anyone with access to the Kube API. The…
CVE-2022-27650 — CVSS 7.5 (high): A flaw was found in crun where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby…
CVE-2023-1108 — CVSS 7.5 (high): A flaw was found in undertow. This issue makes achieving a denial of service possible due to an unexpected handshake status updated in…
CVE-2023-3223 — CVSS 7.5 (high): A flaw was found in undertow. Servlets annotated with @MultipartConfig may cause an OutOfMemoryError due to large multipart content. This…
CVE-2024-12085 — CVSS 7.5 (high): A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the…
CVE-2024-1635 — CVSS 7.5 (high): A vulnerability was found in Undertow. This vulnerability impacts a server that supports the wildfly-http-client protocol. Whenever a…
CVE-2024-5037 — CVSS 7.5 (high): A flaw was found in OpenShift's Telemeter. If certain conditions are in place, an attacker can use a forged token to bypass the issue…
CVE-2025-6021 — CVSS 7.5 (high): A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer…
CVE-2025-7424 — CVSS 7.5 (high): A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input data, which can lead to type…
CVE-2026-33845 — CVSS 7.5 (high): A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow…
CVE-2026-42009 — CVSS 7.5 (high): A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security (DTLS) packet reordering…
CVE-2026-4424 — CVSS 7.5 (high): A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to improper…
CVE-2026-5121 — CVSS 7.5 (high): A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A…
CVE-2026-46579 — CVSS 7.4 (high): A flaw was found in the OpenShift Router. When a Route has `insecureEdgeTerminationPolicy` set to Allow, the HTTP frontend does not remove…
CVE-2021-20218 — CVSS 7.4 (high): A flaw was found in the fabric8 kubernetes-client in version 4.2.0 and after. This flaw allows a malicious pod/container to cause…
CVE-2019-1003003 — CVSS 7.2 (high): An improper authorization vulnerability exists in Jenkins 2.158 and earlier, LTS 2.150.1 and earlier in core/src/main/java/hudson/security/T…
CVE-2019-1003004 — CVSS 7.2 (high): An improper authorization vulnerability exists in Jenkins 2.158 and earlier, LTS 2.150.1 and earlier in core/src/main/java/hudson/security/A…
CVE-2023-5408 — CVSS 7.2 (high): A privilege escalation flaw was found in the node restriction admission plugin of the kubernetes api server of OpenShift. A remote attacker…
CVE-2020-7013 — CVSS 7.2 (high): Kibana versions before 6.8.9 and 7.7.0 contain a prototype pollution flaw in TSVB. An authenticated attacker with privileges to create TSVB…
CVE-2019-10200 — CVSS 7.2 (high): A flaw was discovered in OpenShift Container Platform 4 where, by default, users with access to create pods also have the ability to…
CVE-2026-1933 — CVSS 7.1 (high): A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes. Due to missing SMB-layer…
CVE-2020-27781 — CVSS 7.1 (high): User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation…
CVE-2026-42010 — CVSS 7.1 (high): A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfully matched usernames…
CVE-2022-2990 — CVSS 7.1 (high): An incorrect handling of the supplementary groups in the Buildah container engine might lead to the sensitive information disclosure or…
CVE-2022-2989 — CVSS 7.1 (high): An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or…
CVE-2020-27833 — CVSS 7.1 (high): A Zip Slip vulnerability was found in the oc binary in openshift-clients where an arbitrary file write is achieved by using a specially…
CVE-2023-6291 — CVSS 7.1 (high): A flaw was found in the redirect_uri validation logic in Keycloak. This issue may allow a bypass of otherwise explicitly allowed hosts. A…
CVE-2023-5366 — CVSS 7.1 (high): A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This…
CVE-2021-3529 — CVSS 7.1 (high): A flaw was found in noobaa-core in versions before 5.7.0. This flaw results in the name of an arbitrarily URL being copied into an HTML…
CVE-2019-19921 — CVSS 7.0 (high): runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To…
CVE-2023-3089 — CVSS 7.0 (high): A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of…
CVE-2019-19352 — CVSS 7.0 (high): An insecure modification vulnerability in the /etc/passwd file was found in the operator-framework/presto as shipped in Red Hat Openshift…
CVE-2020-10712 — CVSS 7.0 (high): A flaw was found in OpenShift Container Platform version 4.1 and later. Sensitive information was found to be logged by the image registry…
CVE-2021-3609 — CVSS 7.0 (high): .A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to…
CVE-2020-1708 — CVSS 7.0 (high): It has been found in openshift-enterprise version 3.11 and all openshift-enterprise versions from 4.1 to, including 4.3, that multiple…
CVE-2020-1706 — CVSS 7.0 (high): It has been found that in openshift-enterprise version 3.11 and openshift-enterprise versions 4.1 up to, including 4.3, multiple containers…
CVE-2019-19353 — CVSS 7.0 (high): An insecure modification vulnerability in the /etc/passwd file was found in the operator-framework/hive as shipped in Red Hat Openshift 4…
CVE-2021-3697 — CVSS 7.0 (high): A crafted JPEG image may lead the JPEG reader to underflow its data pointer, allowing user-controlled data to be written in heap. To a…
CVE-2021-20188 — CVSS 7.0 (high): A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked…
CVE-2023-27561 — CVSS 7.0 (high): runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit…
CVE-2021-3827 — CVSS 6.8 (medium): A flaw was found in keycloak, where the default ECP binding flow allows other authentication flows to be bypassed. By exploiting this…
CVE-2025-26465 — CVSS 6.8 (medium): A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a…
CVE-2026-13595 — CVSS 6.8 (medium): A flaw was found in the libblkid library of util-linux. During nested partition probing, the BSD, Minix, Solaris x86, and UnixWare…
CVE-2022-3916 — CVSS 6.8 (medium): A flaw was found in the offline_access scope in Keycloak. This issue would affect users of shared computers more (especially if cookies are…
CVE-2026-4878 — CVSS 6.7 (medium): A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the…
CVE-2020-27777 — CVSS 6.7 (medium): A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. On a locked down (usually due to Secure…
CVE-2025-7519 — CVSS 6.7 (medium): A flaw was found in polkit. When processing an XML policy with 32 or more nested elements in depth, an out-of-bounds write can be…
CVE-2025-5915 — CVSS 6.6 (medium): A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a filter…
CVE-2025-32988 — CVSS 6.5 (medium): A flaw was found in GnuTLS. A double-free vulnerability exists in GnuTLS due to incorrect ownership handling in the export logic of Subject…
CVE-2025-32990 — CVSS 6.5 (medium): A heap-buffer-overflow (off-by-one) flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When…
CVE-2025-5351 — CVSS 6.5 (medium): A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting…
CVE-2018-12207 — CVSS 6.5 (medium): Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an…
CVE-2019-11249 — CVSS 6.5 (medium): The kubectl cp command allows copying files between containers and the user machine. To copy files from a container, Kubernetes runs tar…
CVE-2020-14336 — CVSS 6.5 (medium): A flaw was found in the Restricted Security Context Constraints (SCC), where it allows pods to craft custom network packets. This flaw…
CVE-2019-11250 — CVSS 6.5 (medium): The Kubernetes client-go library logs request headers at verbosity levels of 7 or higher. This can disclose credentials to unauthorized…
CVE-2026-9149 — CVSS 6.5 (medium): A flaw was found in libsolv. This heap buffer overflow vulnerability occurs when a victim processes a specially crafted `.solv` file…
CVE-2026-4426 — CVSS 6.5 (medium): A flaw was found in libarchive. An Undefined Behavior vulnerability exists in the zisofs decompression logic, caused by improper validation…
CVE-2019-10223 — CVSS 6.5 (medium): A security issue was discovered in the kube-state-metrics versions v1.7.0 and v1.7.1. An experimental feature was added to the v1.7.0…
CVE-2017-12195 — CVSS 6.5 (medium): A flaw was found in all Openshift Enterprise versions using the openshift elasticsearch plugin. An attacker with knowledge of the given…
CVE-2021-20291 — CVSS 6.5 (medium): A deadlock vulnerability was found in 'github.com/containers/storage' in versions before 1.28.1. When a container image is processed, each…
CVE-2019-10213 — CVSS 6.5 (medium): OpenShift Container Platform, versions 4.1 and 4.2, does not sanitize secret data written to pod logs when the log level in a given…
CVE-2019-14854 — CVSS 6.5 (medium): OpenShift Container Platform 4 does not sanitize secret data written to static pod logs when the log level in a given operator is set to…
CVE-2022-0669 — CVSS 6.5 (medium): A flaw was found in dpdk. This flaw allows a malicious vhost-user master to attach an unexpected number of fds as ancillary data to…
CVE-2022-1632 — CVSS 6.5 (medium): An Improper Certificate Validation attack was found in Openshift. A re-encrypt Route with destinationCACertificate explicitly set to the…
CVE-2022-1706 — CVSS 6.5 (medium): A vulnerability was found in Ignition where ignition configs are accessible from unprivileged containers in VMs running on VMware products…
CVE-2026-3833 — CVSS 6.5 (medium): A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstraints` labels…
CVE-2018-1000864 — CVSS 6.5 (medium): A denial of service vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in CronTab.java that allows attackers with…
CVE-2023-0056 — CVSS 6.5 (medium): An uncontrolled resource consumption vulnerability was discovered in HAProxy which could crash the service. This issue could allow an…
CVE-2026-2340 — CVSS 6.5 (medium): A flaw was found in Samba’s vfs_worm module. The module is intended to provide write-once, read-many (WORM) protections by preventing…
CVE-2023-2253 — CVSS 6.5 (medium): A flaw was found in the `/v2/_catalog` endpoint in distribution/distribution, which accepts a parameter to control the maximum number of…
CVE-2026-9150 — CVSS 6.5 (medium): A flaw was found in libsolv. This stack-based buffer overflow vulnerability occurs in libsolv's Debian metadata parser when processing…
CVE-2019-1003012 — CVSS 6.5 (medium): A data modification vulnerability exists in Jenkins Blue Ocean Plugins 1.10.1 and earlier in blueocean-core-js/src/js/bundleStartup.js…
CVE-2023-6476 — CVSS 6.5 (medium): A flaw was found in CRI-O that involves an experimental annotation leading to a container being unconfined. This may allow a pod to specify…
CVE-2018-1070 — CVSS 6.5 (medium): routing before version 3.10 is vulnerable to an improper input validation of the Openshift Routing configuration which can cause an entire…