漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in github.com/openshift/apiserver-library-go, used in OpenShift 4.12 and 4.11, that contains an issue that can allow low-privileged users to set the seccomp profile for pods they control to "unconfined." By default, the seccomp profile used in the restricted-v2 Security Context Constraint (SCC) is "runtime/default," allowing users to disable seccomp for pods they can create and modify.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Red Hat OpenShift 输入验证错误漏洞
Vulnerability Description
Red Hat OpenShift是美国红帽(Red Hat)公司的一款平台即服务(PaaS)云计算平台,它支持构建、测试、部署和运行应用程序。 Red Hat OpenShift 4.12和4.11版本存在输入验证错误漏洞,该漏洞源于允许用户为他们控制的PODS设置其控制的Seccomp Profile,以将其控制的PODS设置为“unconfined”。
CVSS Information
N/A
Vulnerability Type
N/A