Security Advisory

CVE-2021-3684

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-24 00:00:00

Last updated 2025-02-25 15:19:30

Assigner redhat

State PUBLISHED

Description

A vulnerability was found in OpenShift Assisted Installer. During generation of the Discovery ISO, image pull secrets were leaked as plaintext in the installation logs. An authenticated user could exploit this by re-using the image pull secret to pull container images from the registry as the associated user.

← Browse all CVEs View on cve.org ↗