CNNVD-202508-2476 Information

Aug 20, 2025 cve

CNNVD ID

CNNVD-202508-2476

CVE-2025-4437

CNNVD Published: 2025-08-20

Description (Chinese)

Red Hat OpenShift Container Platform是美国红帽（Red Hat）公司的一套可帮助企业在物理、虚拟和公共云基础架构之间开发、部署和管理现有基于容器的应用程序的应用平台。 Red Hat OpenShift Container Platform 4存在安全漏洞，该漏洞源于读取过大/etc/passwd文件导致内存消耗过高，可能导致拒绝服务攻击。

Description (English)

Red Hat OpenShift Container Platform is an application platform for Red Hat to help businesses develop, deploy and manage existing container-based applications between physical, virtual and public cloud infrastructure. Red Hat OpenShift Contractor Platform 4 had a security loophole, which stemmed from over-consumption of memory as a result of over-reading/etc/passwd documents, which could lead to a denial-of-service attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

RedisBloom

Published

2025-08-20

Last Modified

2026-02-24

References

https://bugzilla.redhat.com/show_bug.cgi?id=2375084 https://access.redhat.com/security/cve/CVE-2025-4437 https://nvd.nist.gov/vuln/detail/CVE-2025-4437

Share on: