Vulnerabilities > Redhat > Openshift Container Platform > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2022-04-01	CVE-2021-20238	Missing Authentication for Critical Function vulnerability in Redhat products It was found in OpenShift Container Platform 4 that ignition config, served by the Machine Config Server, can be accessed externally from clusters without authentication. network high complexity redhat CWE-306	3.7
2019-07-30	CVE-2019-10165	Information Exposure Through Log Files vulnerability in Redhat Openshift Container Platform OpenShift Container Platform before version 4.1.3 writes OAuth tokens in plaintext to the audit logs for the Kubernetes API server and OpenShift API server. local low complexity redhat CWE-532	2.3
2019-01-28	CVE-2019-3815	A memory leak was discovered in the backport of fixes for CVE-2018-16864 in Red Hat Enterprise Linux. local low complexity redhat debian	3.3
2018-08-01	CVE-2016-8651	Unspecified vulnerability in Redhat Openshift and Openshift Container Platform An input validation flaw was found in the way OpenShift 3 handles requests for images. low complexity redhat	3.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.