A flaw was found in the Red Hat Advanced Cluster Security for Kubernetes. Notifier secrets were not properly sanitized in the GraphQL API. This flaw allows authenticated ACS users to retrieve Notifiers from the GraphQL API, revealing secrets that can escalate their privileges.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HRed Hat Advanced Cluster Security
APPRedhat3.683.693.70
Powiązane podatności
A flaw was found in Stackrox, where it is vulnerable to Cross-site scripting (XSS) if the script code is inclu...
A flaw was discovered in the mholt/archiver package. This flaw allows an attacker to create a specially crafte...
The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, al...
In Red Hat Advanced Cluster Security (RHACS), it was found that some security related HTTP headers were missin...
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)