| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2020-25720 | Samba: check attribute access rights for ldap adds of computers | - | - | High | 7.5 | 2024-11-17 10:17:08 | Deep Dive |
| CVE-2024-11217 | Oauth-server-container: oauth-server-container logs client secret in debug level | - | - | Medium | 4.9 | 2024-11-15 20:48:46 | Deep Dive |
| CVE-2024-10963 | Pam: improper hostname interpretation in pam_access leads to access control bypass | - | - | High | 7.4 | 2024-11-07 16:02:35 | Deep Dive |
| CVE-2024-50312 | Graphql: information disclosure via graphql introspection in openshift | Red Hat | Red Hat OpenShift Container Platform 4.16 | Medium | 5.3 | 2024-10-22 13:24:12 | Deep Dive |
| CVE-2024-50311 | Graphql: denial of service (dos) vulnerability via graphql batching | Red Hat | Red Hat OpenShift Container Platform 4.18 | Medium | 6.5 | 2024-10-22 13:24:04 | Deep Dive |
| CVE-2024-9676 | Podman: buildah: cri-o: symlink traversal vulnerability in the containers/storage library can cause denial of service (dos) | - | - | Medium | 6.5 | 2024-10-15 15:27:34 | Deep Dive |
| CVE-2024-9675 | Buildah: buildah allows arbitrary directory mount | - | - | High | 7.8 | 2024-10-09 14:32:12 | Deep Dive |
| CVE-2024-9407 | Buildah: podman: improper input validation in bind-propagation option of dockerfile run --mount instruction | - | - | Medium | 4.7 | 2024-10-01 20:13:30 | Deep Dive |
| CVE-2024-9341 | Podman: buildah: cri-o: fips crypto-policy directory mounting issue in containers/common go library | - | - | Medium | 5.4 | 2024-10-01 18:52:01 | Deep Dive |
| CVE-2024-9355 | Golang-fips: golang fips zeroed buffer | - | - | Medium | 6.5 | 2024-10-01 18:17:29 | Deep Dive |
| CVE-2024-45496 | Openshift-controller-manager: elevated build pods can lead to node compromise in openshift | - | - | Critical | 9.9 | 2024-09-16 23:58:59 | Deep Dive |
| CVE-2024-7387 | Openshift/builder: path traversal allows command injection in privileged buildcontainer using docker build strategy | - | - | Critical | 9.1 | 2024-09-16 23:58:35 | Deep Dive |
| CVE-2023-6841 | Keycloak: amount of attributes per object is not limited and it may lead to dos | - | - | High | 7.5 | 2024-09-10 16:15:33 | Deep Dive |
| CVE-2024-8418 | Containers/aardvark-dns: tcp query handling flaw in aardvark-dns leading to denial of service | - | - | High | 7.5 | 2024-09-04 14:24:03 | Deep Dive |
| CVE-2024-6508 | Openshift-console: oauth2 insufficient state parameter entropy | - | - | High | 8.0 | 2024-08-21 05:45:28 | Deep Dive |
| CVE-2024-7557 | Odh-dashboard: odh-model-controller: cross-model authentication bypass in openshift ai | - | - | High | 8.8 | 2024-08-08 21:33:15 | Deep Dive |
| CVE-2024-43168 | Unbound: heap-buffer-overflow in unbound | Red Hat | Red Hat Enterprise Linux 6 | Medium | 4.8 | 2024-08-08 20:25:25 | Deep Dive |
| CVE-2024-43167 | Unbound: null pointer dereference in unbound | Red Hat | Red Hat Enterprise Linux 6 | Low | 2.8 | 2024-08-08 20:24:50 | Deep Dive |
| CVE-2024-7409 | Qemu: denial of service via improper synchronization in qemu nbd server during socket closure | - | - | - | - | 2024-08-05 13:19:27 | Deep Dive |
| CVE-2024-3056 | Podman: kernel: containers in shared ipc namespace are vulnerable to denial of service attack | - | - | High | 7.7 | 2024-08-02 20:37:59 | Deep Dive |