Openshift Machine Config Operator

DATE	CVE	VULNERABILITY TITLE	RISK
2022-04-01	CVE-2021-20238	Missing Authentication for Critical Function vulnerability in Redhat products It was found in OpenShift Container Platform 4 that ignition config, served by the Machine Config Server, can be accessed externally from clusters without authentication. network high complexity redhat CWE-306	3.7

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.