VDB

CVE-2020-14336

CVE-2020-14336 PUBLISHED CVSS 4 MEDIUM

A flaw was found in the Restricted Security Context Constraints (SCC), where it allows pods to craft custom network packets. This flaw allows an attacker to cause a denial of service attack on an OpenShift Container Platform cluster if they can deploy pods. The highest threat from this vulnerability is to system availability.

EPSS 0.33% · 56.2th percentile

Risk Scores

CVSS 2.0
4
EPSS Score
0.33%
56.2th percentile

Affected Products

VendorProductVersions
redhatopenshift_container_platform3.11, 4.5.16, 4.6
n/aOpenshiftRed Hat OpenShift Container Platform 4.6 and Red Hat OpenShift Container Platform 4.5.16

Timeline

  • Jun 2, 2021 EPSS Score
  • Jun 2, 2021 CVE Published
  • Aug 4, 2021 EPSS Score
  • Oct 4, 2021 EPSS Score
  • Dec 4, 2021 EPSS Score
  • Feb 3, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • Apr 5, 2022 EPSS Score
  • Jun 5, 2022 EPSS Score
  • Aug 6, 2022 EPSS Score
  • Oct 6, 2022 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›