Vulnerabilities > Redhat > Openshift Machine Config Operator > Low

DATE CVE VULNERABILITY TITLE RISK
2022-04-01 CVE-2021-20238 Missing Authentication for Critical Function vulnerability in Redhat products
It was found in OpenShift Container Platform 4 that ignition config, served by the Machine Config Server, can be accessed externally from clusters without authentication.
network
high complexity
redhat CWE-306
3.7