Product
critical
advisory
KubeVirt virt-handler Symlink Vulnerability Leading to Container Escape (CVE-2026-7374)
2 rules 1 TTP 1 CVECVE-2026-7374 allows an authenticated OpenShift user with edit permissions in a single namespace to escalate privileges to full cluster control by exploiting improper symlink validation in KubeVirt's virt-handler component when connecting to VM console sockets.
virt-handler +1
kubeVirt
openshift
symlink
container escape
privilege escalation
2r
1t
1c
high
advisory
Multiple Vulnerabilities in Red Hat Enterprise Linux and OpenShift Grafana Component
2 rules 3 TTPsA remote anonymous attacker can exploit multiple vulnerabilities in the Grafana component of Red Hat Enterprise Linux and OpenShift to execute arbitrary code, disclose confidential information, and cause a denial-of-service condition.
Red Hat Enterprise Linux +1
grafana
rhel
openshift
vulnerability
code execution
information disclosure
denial of service
2r
3t