CVE-2023-0229

CVE-2023-0229

Vendor N/A

Product github.com/openshift/apiserver-library-go

Weakness CWE-20 · Input validation

Published January 25, 2023

Last update April 1, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A flaw was found in github.com/openshift/apiserver-library-go, used in OpenShift 4.12 and 4.11, that contains an issue that can allow low-privileged users to set the seccomp profile for pods they control to "unconfined." By default, the seccomp profile used in the restricted-v2 Security Context Constraint (SCC) is "runtime/default," allowing users to disable seccomp for pods they can create and modify.

Key dates

02Disclosure timeline

January 25, 2023 CVE published

April 1, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-0229 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/20.html

Related vulnerabilities

01Description

02Disclosure timeline

03References

04Related CVE