Vulnerabilities > Redhat > Openshift Container Platform

DATE CVE VULNERABILITY TITLE RISK
2024-10-22 CVE-2024-50312 Unspecified vulnerability in Redhat Openshift Container Platform 4.0
A vulnerability was found in GraphQL due to improper access controls on the GraphQL introspection query.
network
low complexity
redhat
5.3
2024-10-15 CVE-2024-9676 Unspecified vulnerability in Redhat products
A vulnerability was found in Podman, Buildah, and CRI-O.
network
low complexity
redhat
6.5
2024-10-01 CVE-2024-9341 A flaw was found in Go.
network
low complexity
containers redhat
8.2
2024-09-03 CVE-2024-4629 Unspecified vulnerability in Redhat products
A vulnerability was found in Keycloak.
network
low complexity
redhat
6.5
2024-08-02 CVE-2024-3056 Resource Exhaustion vulnerability in multiple products
A flaw was found in Podman.
network
high complexity
podman-project redhat fedoraproject CWE-400
7.7
2024-07-01 CVE-2024-6387 Race Condition vulnerability in multiple products
A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd).
8.1
2024-06-05 CVE-2024-5037 Unspecified vulnerability in Redhat products
A flaw was found in OpenShift's Telemeter.
network
low complexity
redhat
7.5
2024-01-26 CVE-2023-6291 Open Redirect vulnerability in Redhat products
A flaw was found in the redirect_uri validation logic in Keycloak.
network
low complexity
redhat CWE-601
7.1
2024-01-09 CVE-2023-6476 Allocation of Resources Without Limits or Throttling vulnerability in Redhat Openshift Container Platform 3.11/4.13/4.14
A flaw was found in CRI-O that involves an experimental annotation leading to a container being unconfined.
network
low complexity
redhat CWE-770
7.5
2023-12-21 CVE-2023-2585 Unspecified vulnerability in Redhat products
Keycloak's device authorization grant does not correctly validate the device code and client ID.
network
low complexity
redhat
8.1