Browse all 5 CVE security advisories affecting OpenShift. AI-powered Chinese analysis, POCs, and references for each vulnerability.
OpenShift is a Kubernetes-based container platform primarily used for enterprise application deployment and management. Historically, it has faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, often stemming from misconfigurations or insecure default settings. The platform implements security features like role-based access control and network policies, but past incidents have exposed flaws in its authentication mechanisms and container runtime isolation. With five current CVEs, ongoing attention to patching and hardening remains critical for organizations relying on this infrastructure to maintain secure containerized environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2021-4294 | OpenShift OSIN CheckClientSecret timing discrepancy — OSINCWE-208 | 2.6 | Low | 2022-12-28 |
| CVE-2020-10752 | Red Hat OpenShift API Server 资源管理错误漏洞 — openshift/openshift-apiserver | 8.1 | - | 2020-06-12 |
| CVE-2013-0196 | OpenShift Enterprise 跨站请求伪造漏洞 — OpenShift Enterprise | 8.8 | - | 2019-12-30 |
| CVE-2014-0163 | Red Hat OpenShift 操作系统命令注入漏洞 — Openshift | 8.8 | - | 2019-12-11 |
| CVE-2014-0023 | Red Hat OpenShift 安全漏洞 — OpenShift | 9.8 | - | 2019-11-15 |
This page lists every published CVE security advisory associated with OpenShift. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.