Openshift Container Platform

DATE	CVE	VULNERABILITY TITLE	RISK
2022-04-04	CVE-2022-27650	Incorrect Default Permissions vulnerability in multiple products A flaw was found in crun where containers were incorrectly started with non-empty default permissions. network high complexity crun-project fedoraproject redhat CWE-276	7.5
2022-04-01	CVE-2021-20238	Missing Authentication for Critical Function vulnerability in Redhat products It was found in OpenShift Container Platform 4 that ignition config, served by the Machine Config Server, can be accessed externally from clusters without authentication. network high complexity redhat CWE-306	3.7
2022-03-03	CVE-2021-3609	.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges. local high complexity linux redhat netapp	7.0
2022-03-02	CVE-2021-3631	A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. local high complexity redhat netapp	6.3
2022-03-02	CVE-2022-0711	Infinite Loop vulnerability in multiple products A flaw was found in the way HAProxy processed HTTP responses containing the "Set-Cookie2" header. network low complexity haproxy redhat debian CWE-835	7.5
2022-02-16	CVE-2021-3560	Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the root user. local low complexity polkit-project debian canonical redhat CWE-754	7.8
2022-02-09	CVE-2022-0532	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products An incorrect sysctls validation vulnerability was found in CRI-O 1.18 and earlier. network high complexity kubernetes redhat CWE-732	4.2
2021-12-14	CVE-2021-4104	Deserialization of Untrusted Data vulnerability in multiple products JMSAppender in Log4j 1.2 is vulnerable to deserialization of untrusted data when the attacker has write access to the Log4j configuration. network high complexity apache fedoraproject redhat oracle CWE-502	7.5
2021-06-02	CVE-2021-3529	Unspecified vulnerability in Redhat Noobaa-Operator and Openshift Container Platform A flaw was found in noobaa-core in versions before 5.7.0. network low complexity redhat	7.1
2021-06-02	CVE-2020-14336	Unspecified vulnerability in Redhat Openshift Container Platform 3.11/4.5.16/4.6 A flaw was found in the Restricted Security Context Constraints (SCC), where it allows pods to craft custom network packets. network low complexity redhat	6.5