CVE-2020-14336 — Vulnetix

Try Vulnetix Request Demo

CVE-2020-14336 PUBLISHED CVSS 4 MEDIUM

A flaw was found in the Restricted Security Context Constraints (SCC), where it allows pods to craft custom network packets. This flaw allows an attacker to cause a denial of service attack on an OpenShift Container Platform cluster if they can deploy pods. The highest threat from this vulnerability is to system availability.

EPSS 0.33% · 55.7th percentile

Risk Scores

CVSS v2.0

4

EPSS Score

0.33%

55.7th percentile

Affected Products

Vendor	Product	Versions
redhat	openshift_container_platform	3.11, 4.5.16, 4.6
n/a	Openshift	Red Hat OpenShift Container Platform 4.6 and Red Hat OpenShift Container Platform 4.5.16

Timeline

Jun 2, 2021 EPSS Score
Jun 2, 2021 CVE Published
Aug 3, 2021 EPSS Score
Oct 3, 2021 EPSS Score
Dec 2, 2021 EPSS Score
Feb 1, 2022 EPSS Score
Feb 4, 2022 EPSS Score
Apr 1, 2022 EPSS Score
Apr 2, 2022 EPSS Score
Jun 2, 2022 EPSS Score
Aug 2, 2022 EPSS Score
Oct 2, 2022 EPSS Score

References

Open in Interactive Console →