Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Red Hat OpenShift Container Platform 4 — Vulnerabilities & Security Advisories 7

All 7 CVE vulnerabilities found in Red Hat OpenShift Container Platform 4, with AI-generated Chinese analysis, references, and POCs.

Vendor: Red Hat

CVE IDTitleCVSSSeverityPublished
CVE-2026-10843 Cloud-credential-operator: cco mint-mode credentialsrequest manifests grant account-wide iam access beyond cluster scope on aws CWE-250 7.2 High2026-06-04
CVE-2026-10533 Openshift: openshift: non-admin user can bypass resourcequota and flood etcd with events causing cluster-wide api degradation CWE-770 5.0 Medium2026-06-01
CVE-2026-42965 Openshift/router: openshift/router: cloud metadata ssrf via fqdn-typed endpointslice bypasses destination validation CWE-918 7.7 High2026-05-29
CVE-2026-46579 Openshift/router: openshift/router: mtls client certificate spoofing via unstripped x-ssl-client headers on http frontend CWE-287 7.4 High2026-05-29
CVE-2026-7309 Openshift-controller-manager: openshift container platform: information disclosure via environment variable injection CWE-426 4.3 Medium2026-04-28
CVE-2025-14443 Ose-openshift-apiserver: openshift api server: server-side request forgery (ssrf) vulnerability in imagestreamimport mechanism CWE-918 6.4 Medium2025-12-16
CVE-2025-4437 Cri-o: large /etc/passwd file may lead to denial of service CWE-770 5.7 Medium2025-08-20

All 7 known CVE vulnerabilities affecting Red Hat OpenShift Container Platform 4 with full Chinese analysis, references, and POCs where available.