Vulnerabilities > CVE-2020-14336 - Unspecified vulnerability in Redhat Openshift Container Platform 3.11/4.5.16/4.6

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

redhat

NVD

Published: 2021-06-02

Updated: 2024-11-21

Summary

A flaw was found in the Restricted Security Context Constraints (SCC), where it allows pods to craft custom network packets. This flaw allows an attacker to cause a denial of service attack on an OpenShift Container Platform cluster if they can deploy pods. The highest threat from this vulnerability is to system availability.

Vulnerable Configurations

Part	Description	Count
Application	Redhat Redhat Openshift Container Platform 3.11 Redhat Openshift Container Platform 4.6 Redhat Openshift Container Platform 4.5.16	3

References

https://bugzilla.redhat.com/show_bug.cgi?id=1858981
https://bugzilla.redhat.com/show_bug.cgi?id=1858981