Red Hat Enterprise Linux and OpenShift Vulnerabilities Disclosed
Summary
CERT-Bund has issued a security advisory regarding multiple vulnerabilities in Red Hat Enterprise Linux (RHEL) and Red Hat OpenShift. The vulnerabilities have a CVSS Base Score of 7.3 and could allow for arbitrary code execution, denial of service, file manipulation, and information disclosure.
What changed
CERT-Bund has disclosed multiple vulnerabilities affecting Red Hat Enterprise Linux (RHEL) and Red Hat OpenShift Container Platform (rhcos). The advisory, WID-SEC-2026-0769, notes a CVSS Base Score of 7.3 (high) and a Temporal Score of 6.4 (medium). Exploitation could lead to arbitrary code execution, denial of service, file manipulation, and information disclosure.
Organizations utilizing affected versions of RHEL (versions below 9 and version 10) and OpenShift Container Platform rhcos (version 4) should review the advisory for specific mitigation steps. While remote attacks are not indicated as possible, the potential for significant system compromise necessitates prompt assessment and implementation of available security measures to prevent exploitation.
What to do next
- Review CERT-Bund advisory WID-SEC-2026-0769 for affected Red Hat Enterprise Linux and OpenShift versions.
- Assess systems for potential exploitation of disclosed vulnerabilities.
- Implement recommended mitigation steps provided by CERT-Bund and Red Hat.
Source document (simplified)
[WID-SEC-2026-0769] Red Hat Enterprise Linux (capstone) und OpenShift (rhcos): Mehrere Schwachstellen CVSS Base Score 7.3 (hoch) CVSS Temporal Score 6.4 (mittel) Remoteangriff nein Datum 17.03.2026 Stand 18.03.2026 Mitigation ja
Betroffene Systeme
Betriebssystem
- Linux
- UNIX
Produktbeschreibung
Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.
Produkte
17.03.2026
- Red Hat Enterprise Linux capstone <9
Red Hat Enterprise Linux capstone = 10
Red Hat OpenShift Container Platform rhcos = 4
Angriff
Angriff
Ein Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux und Red Hat OpenShift ausnutzen, um beliebigen Programmcode auszuführen, um einen Denial of Service Angriff durchzuführen, um Dateien zu manipulieren, und um Informationen offenzulegen. CVE Informationen Versionshistorie Feedback zum Advisory geben
Related changes
Source
Classification
Who this affects
Taxonomy
Browse Categories
Get Data Privacy & Cybersecurity alerts
Weekly digest. AI-summarized, no noise.
Free. Unsubscribe anytime.
Get alerts for this source
We'll email you when CERT-Bund Security Advisories publishes new changes.