vulnerability
Red Hat OpenShift: CVE-2021-25749: kubelet: runAsNonRoot logic bypass for Windows containers
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:S/C:C/I:C/A:C) | Jan 31, 2023 | Jan 31, 2023 | Aug 11, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
Jan 31, 2023
Added
Jan 31, 2023
Modified
Aug 11, 2025
Description
Windows workloads can run as ContainerAdministrator even when those workloads set the runAsNonRoot option to true.
Solution
linuxrpm-upgrade-openshift4-wincw-windows-machine-config-rhel8-operator
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.