Skip to main content

Advanced Cluster Management For Kubernetes

6 CVEs product

Monthly

CVE-2025-6017 MEDIUM This Month

A security vulnerability in Red Hat Advanced Cluster Management (CVSS 5.5) that allows an unprivileged user. Remediation should follow standard vulnerability management procedures.

Information Disclosure Red Hat Advanced Cluster Management For Kubernetes
NVD
CVSS 3.1
5.5
EPSS
0.0%
CVE-2023-3027 HIGH This Week

The grc-policy-propagator allows security escalation within the cluster. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Advanced Cluster Management For Kubernetes
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-2238 MEDIUM This Month

A vulnerability was found in the search-api container in Red Hat Advanced Cluster Management for Kubernetes when a query in the search filter gets parsed by the backend. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Kubernetes Red Hat SQLi Advanced Cluster Management For Kubernetes
NVD
CVSS 3.1
6.5
EPSS
0.8%
CVE-2022-27191 Go HIGH PATCH This Week

The golang.org/x/crypto/ssh package before 0.0.0-20220314234659-1baeb1ce4c0b for Go allows an attacker to crash a server in certain circumstances involving AddHostKey. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service SSH Extra Packages For Enterprise Linux Fedora Advanced Cluster Management For Kubernetes
NVD
CVSS 3.1
7.5
EPSS
3.9%
CVE-2020-25688 LOW Monitor

A flaw was found in rhacm versions before 2.0.5 and before 2.1.0. Rated low severity (CVSS 3.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Advanced Cluster Management For Kubernetes
NVD
CVSS 3.1
3.5
EPSS
0.2%
CVE-2020-25655 MEDIUM This Month

An issue was discovered in ManagedClusterView API, that could allow secrets to be disclosed to users without the correct permissions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Advanced Cluster Management For Kubernetes
NVD
CVSS 3.1
6.5
EPSS
0.6%
EPSS 0% CVSS 5.5
MEDIUM This Month

A security vulnerability in Red Hat Advanced Cluster Management (CVSS 5.5) that allows an unprivileged user. Remediation should follow standard vulnerability management procedures.

Information Disclosure Red Hat Advanced Cluster Management For Kubernetes
NVD
EPSS 0% CVSS 7.8
HIGH This Week

The grc-policy-propagator allows security escalation within the cluster. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Advanced Cluster Management For Kubernetes
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

A vulnerability was found in the search-api container in Red Hat Advanced Cluster Management for Kubernetes when a query in the search filter gets parsed by the backend. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Kubernetes Red Hat SQLi +1
NVD
EPSS 4% CVSS 7.5
HIGH PATCH This Week

The golang.org/x/crypto/ssh package before 0.0.0-20220314234659-1baeb1ce4c0b for Go allows an attacker to crash a server in certain circumstances involving AddHostKey. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service SSH Extra Packages For Enterprise Linux +2
NVD
EPSS 0% CVSS 3.5
LOW Monitor

A flaw was found in rhacm versions before 2.0.5 and before 2.1.0. Rated low severity (CVSS 3.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Advanced Cluster Management For Kubernetes
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

An issue was discovered in ManagedClusterView API, that could allow secrets to be disclosed to users without the correct permissions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Advanced Cluster Management For Kubernetes
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy