← Retour aux CVEs
CVE-2020-14336
MEDIUM6.5
Description
A flaw was found in the Restricted Security Context Constraints (SCC), where it allows pods to craft custom network packets. This flaw allows an attacker to cause a denial of service attack on an OpenShift Container Platform cluster if they can deploy pods. The highest threat from this vulnerability is to system availability.
Details CVE
Score CVSS v3.16.5
SeveriteMEDIUM
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisLOW
Interaction utilisateurNONE
Publie6/2/2021
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0
Produits affectes
redhat:openshift_container_platform
Faiblesses (CWE)
CWE-770
References
https://bugzilla.redhat.com/show_bug.cgi?id=1858981(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=1858981(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.