CVE-2026-15584

HIGH

Pen Drive Powered BY Red Hat Lightspeed - Privilege Escalation

Title source: rule
STIX 2.1

Description

A privilege escalation vulnerability was found in the incluster-checks tool for OpenShift. The tool creates privileged debug pods with host filesystem access in the shared default namespace, where any user with the standard edit role can exec into them and obtain root access on cluster nodes.

References (2)

Core 2
Core References
Vdb Entry, X_Refsource_Redhat vdb-entry x_refsource_redhat
https://access.redhat.com/security/cve/CVE-2026-15584
Issue Tracking, X_Refsource_Redhat issue-tracking x_refsource_redhat
RHBZ#2499647
https://bugzilla.redhat.com/show_bug.cgi?id=2499647

Scores

CVSS v3 7.5
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-250
Status published
Products (1)
Red Hat/Pen Drive Powered by Red Hat Lightspeed
Published Jul 13, 2026
Tracked Since Jul 13, 2026