Vulnerabilities > Redhat > Openshift Container Platform > 3.11

DATE CVE VULNERABILITY TITLE RISK
2021-03-16 CVE-2021-20218 Unspecified vulnerability in Redhat products
A flaw was found in the fabric8 kubernetes-client in version 4.2.0 and after.
network
high complexity
redhat
7.4
2021-02-11 CVE-2021-20188 A flaw was found in podman before 1.7.0.
local
high complexity
podman-project redhat
7.0
2020-12-21 CVE-2020-27846 A signature verification vulnerability exists in crewjam/saml.
network
low complexity
grafana saml-project redhat fedoraproject
critical
9.8
2020-06-12 CVE-2020-10752 Insufficiently Protected Credentials vulnerability in Redhat Openshift Container Platform 3.11/4.0
A flaw was found in the OpenShift API Server, where it failed to sufficiently protect OAuthTokens by leaking them into the logs when an API Server panic occurred.
network
high complexity
redhat CWE-522
7.5
2020-06-03 CVE-2020-7013 Code Injection vulnerability in multiple products
Kibana versions before 6.8.9 and 7.7.0 contain a prototype pollution flaw in TSVB.
network
low complexity
elastic redhat CWE-94
7.2
2020-04-24 CVE-2020-1741 Unspecified vulnerability in Redhat Openshift Container Platform 3.11
A flaw was found in openshift-ansible.
network
high complexity
redhat
5.9
2020-04-22 CVE-2020-10712 Unspecified vulnerability in Redhat Openshift Container Platform
A flaw was found in OpenShift Container Platform version 4.1 and later.
network
low complexity
redhat
8.2
2020-04-02 CVE-2020-11100 Out-of-bounds Write vulnerability in multiple products
In hpack_dht_insert in hpack-tbl.c in the HPACK decoder in HAProxy 1.8 through 2.x before 2.1.4, a remote attacker can write arbitrary bytes around a certain location on the heap via a crafted HTTP/2 request, possibly causing remote code execution.
8.8
2020-03-31 CVE-2020-10696 Path Traversal vulnerability in multiple products
A path traversal flaw was found in Buildah in versions before 1.14.5.
network
low complexity
buildah-project redhat CWE-22
8.8
2020-03-09 CVE-2020-1706 Unspecified vulnerability in Redhat Openshift Container Platform
It has been found that in openshift-enterprise version 3.11 and openshift-enterprise versions 4.1 up to, including 4.3, multiple containers modify the permissions of /etc/passwd to make them modifiable by users other than root.
local
high complexity
redhat
7.0