This security bulletin contains one low risk vulnerability.
The vulnerability allows a local user to escalate privileges.
The vulnerability exists due to improper privilege management where supplementary groups are not set up properly inside a container. A local user can use supplementary group access to bypass primary group restrictions and compromise the container.
Install updates from vendor's website.
Red Hat OpenShift Container Platform: 4.12.0 - 4.12.29Fixed software versions
Q & A
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?