CNNVD-202512-2615 Information
CNNVD ID
CNNVD-202512-2615
Related CVE
- CNNVD Published: 2025-12-15
Description (Chinese)
Red Hat OpenShift GitOps是美国红帽(Red Hat)公司的一个自动化部署服务。 Red Hat OpenShift GitOps存在安全漏洞,该漏洞源于命名空间管理员可创建ArgoCD自定义资源获取特权,可能导致集群完全控制。
Description (English)
Red Hat OpenShift Gitops is an automated deployment service for Red Hat. Red Hat OpenShift GitOps had a security loophole, which stemmed from the fact that the name space administrator could create the ArgoCD ’ s own defined resource access privileges, which could lead to full cluster control.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
红帽
Published
2025-12-15
Last Modified
2026-02-24
References
https://access.redhat.com/errata/RHSA-2025:23203 https://access.redhat.com/errata/RHSA-2025:23206 https://access.redhat.com/errata/RHSA-2025:23207 https://access.redhat.com/security/cve/CVE-2025-13888 https://bugzilla.redhat.com/show_bug.cgi?id=2418361 https://access.redhat.com/security/cve/cve-2025-13888
Patch
https://access.redhat.com/security/cve/cve-2025-13888
Share on: