Vulnerabilities > CVE-2023-5408 - Unspecified vulnerability in Redhat Openshift Container Platform

CVSS 7.2 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

redhat

NVD

Published: 2023-11-02

Updated: 2024-01-21

Summary

A privilege escalation flaw was found in the node restriction admission plugin of the kubernetes api server of OpenShift. A remote attacker who modifies the node role label could steer workloads from the control plane and etcd nodes onto different worker nodes and gain broader access to the cluster.

Vulnerable Configurations

Part	Description	Count
Application	Redhat Redhat Openshift Container Platform 4.12 Redhat Openshift Container Platform 4.11 Redhat Openshift Container Platform 4.13 Redhat Openshift Container Platform 4.14	4

References

https://access.redhat.com/errata/RHSA-2023:6130
https://access.redhat.com/security/cve/CVE-2023-5408
https://bugzilla.redhat.com/show_bug.cgi?id=2242173
https://github.com/openshift/kubernetes/pull/1736
https://access.redhat.com/errata/RHSA-2023:6842
https://access.redhat.com/errata/RHSA-2023:7479
https://access.redhat.com/errata/RHSA-2023:5006