VDB
RHSA-2023%3A4780
RHSA-2023%3A4780
PUBLISHED
CVSS 8.800000190734863 HIGH
A vulnerability was found in Kubernetes. This flaw allows a user who can create pods on Windows nodes to escalate to admin privileges on those nodes.
Risk Scores
CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | openshift4-wincw/windows-machine-config-rhel8-operator@sha256:bb7f3f8760a1a092a343423164c2ed9dbd8b346e86153aa849b667d17ec3c31e_amd64 as a component of Red Hat OpenShift Container Platform 4.11 | openshift4-wincw/windows-machine-config-rhel8-operator@sha256:bb7f3f8760a1a092a343423164c2ed9dbd8b346e86153aa849b667d17ec3c31e_amd64 |
| Red Hat | openshift4-wincw/windows-machine-config-operator-bundle@sha256:818d1cacc1152020239e0234e6d350bc4394ffc7de2ebfec579b460b35d7d69d_amd64 as a component of Red Hat OpenShift Container Platform 4.11 | * |
Timeline
- Aug 28, 2023 CVE Published
- Mar 21, 2026 CVE Updated
- May 1, 2026 Distribution Patch
- May 1, 2026 Distribution Patch
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2023:4780 advisory
- https://access.redhat.com/security/updates/classification/#important advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2227126 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2227128 issue
- https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4780.json advisory
- https://access.redhat.com/security/cve/CVE-2023-3676 advisory
- https://www.cve.org/CVERecord?id=CVE-2023-3676 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2023-3676 advisory
- https://access.redhat.com/security/cve/CVE-2023-3955 advisory
- https://www.cve.org/CVERecord?id=CVE-2023-3955 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2023-3955 advisory