How severe is CVE-2024-25133?

CVE-2024-25133 has a CVSS v3 score of 8.8 (HIGH).

CVE-2024-25133

8.8HIGH

A flaw was found in the Hive ClusterDeployments resource in OpenShift Dedicated. In certain conditions, this issue may allow a developer account on a Hive-enabled cluster to obtain cluster-admin privi

Published: 12/31/2024Updated: 2/6/2025

Description

A flaw was found in the Hive ClusterDeployments resource in OpenShift Dedicated. In certain conditions, this issue may allow a developer account on a Hive-enabled cluster to obtain cluster-admin privileges by executing arbitrary commands on the hive/hive-controllers pod.

AI AnalysisPowered by AI

References

https://access.redhat.com/security/cve/CVE-2024-25133
https://bugzilla.redhat.com/show_bug.cgi?id=2260372
https://github.com/openshift/hive/pull/2306