Vulnerabilities > Redhat > Openshift Container Platform > 3.4

DATE	CVE	VULNERABILITY TITLE	RISK
2018-07-02	CVE-2018-10843	Incorrect Permission Assignment for Critical Resource vulnerability in Redhat Openshift Container Platform source-to-image component of Openshift Container Platform before versions atomic-openshift 3.7.53, atomic-openshift 3.9.31 is vulnerable to a privilege escalation which allows the assemble script to run as the root user in a non-privileged container. network low complexity redhat CWE-732 critical	9.0
2018-06-15	CVE-2018-1085	Improper Authentication vulnerability in Redhat Openshift Container Platform openshift-ansible before versions 3.9.23, 3.7.46 deploys a misconfigured etcd file that causes the SSL client certificate authentication to be disabled. network low complexity redhat CWE-287 critical	10.0
2018-06-12	CVE-2018-1070	Improper Input Validation vulnerability in Redhat Openshift Container Platform routing before version 3.10 is vulnerable to an improper input validation of the Openshift Routing configuration which can cause an entire shard to be brought down. network low complexity redhat CWE-20	5.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.