EPSS
Percentile
48.1%
openshift is vulnerable to Information Disclosure. Users authorized to list or watch one type of namespaced custom resource, cluster-wide can read custom resources of a different kind in the same API group they are not authorized to read.
access.redhat.com/errata/RHSA-2022:7398
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=2136673
github.com/kubernetes/kubernetes/issues/113756
groups.google.com/g/kubernetes-security-announce/c/iUd550j7kjA
security.netapp.com/advisory/ntap-20230511-0004/