threat
engine
.sh
Back
·
··:··
Home
/
Product
/
redhat openshift container platform for linuxone
Product
redhat openshift container platform for linuxone
17 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-13601
all versions
A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string(
7.7
HIGH
CVE-2025-6021
all versions
A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-base
7.5
HIGH
CVE-2024-9676
all versions
A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can c
6.5
MEDIUM
CVE-2024-8883
all versions
A misconfiguration flaw was found in Keycloak. This issue can allow an attacker to redirect users to an arbitrary URL if a 'Valid
6.1
MEDIUM
CVE-2024-4629
all versions
A vulnerability was found in Keycloak. This flaw allows attackers to bypass brute force protection by exploiting the timing of log
6.5
MEDIUM
CVE-2024-1132
all versions
A flaw was found in Keycloak, where it does not properly validate URLs included in a redirect. This issue could allow an attacker
8.1
HIGH
CVE-2024-1725
all versions
A flaw was found in the kubevirt-csi component of OpenShift Virtualization's Hosted Control Plane (HCP). This issue could allow an
6.5
MEDIUM
CVE-2024-1635
all versions
A vulnerability was found in Undertow. This vulnerability impacts a server that supports the wildfly-http-client protocol. Wheneve
7.5
HIGH
CVE-2023-6291
all versions
A flaw was found in the redirect_uri validation logic in Keycloak. This issue may allow a bypass of otherwise explicitly allowed h
7.1
HIGH
CVE-2023-2585
all versions
Keycloak's device authorization grant does not correctly validate the device code and client ID. An attacker client could abuse th
3.5
LOW
CVE-2023-5625
all versions
A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting i
5.3
MEDIUM
CVE-2022-4318
all versions
A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially craft
7.8
HIGH
CVE-2022-4039
all versions
A flaw was found in Red Hat Single Sign-On for OpenShift container images, which are configured with an unsecured management inter
8.0
HIGH
CVE-2022-3916
all versions
A flaw was found in the offline_access scope in Keycloak. This issue would affect users of shared computers more (especially if co
6.8
MEDIUM
CVE-2023-1108
all versions
A flaw was found in undertow. This issue makes achieving a denial of service possible due to an unexpected handshake status update
7.5
HIGH
CVE-2023-3089
all versions
A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, n
7.0
HIGH
CVE-2020-8945
all versions
The proglottis Go wrapper before 0.1.1 for the GPGME library has a use-after-free, as demonstrated by use for container image pull
7.5
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin