anonhaven
Ad

CVE-2026-4740

HIGH CVSS 3.1: 8.2 EPSS 0.01%
Updated Apr 07, 2026
Kubernetes
Parameter Value
CVSS 8.2 (HIGH)
Type CWE-295 (Improper Certificate Validation)
Vendor Kubernetes
Public PoC No

A flaw was found in Open Cluster Management (OCM), the technology underlying Red Hat Advanced Cluster Management (ACM). Improper validation of Kubernetes client certificate renewal allows a managed cluster administrator to forge a client certificate that can be approved by the OCM controller. This enables cross-cluster privilege escalation and may allow an attacker to gain control over other managed clusters, including the hub cluster.

Attack Parameters

Attack Vector
Local
Requires local access
Attack Complexity
Low
Easy to exploit
Privileges Required
High
Admin privileges needed
User Interaction
None
No user interaction needed

Impact Assessment

Confidentiality
High
Complete data leak
Integrity
High
Complete data modification
Availability
High
Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-295 Improper Certificate Validation

References 3

https://access.redhat.com/security/cve/CVE-2026-4740
secalert@redhat.com
https://blog.arfevrier.fr/open-cluster-management-cross-cluster-escape/
secalert@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2450590
secalert@redhat.com
Share Post Share Share Share

Related Vulnerabilities

CVE-2026-40090

Kubernetes

7.1

CVE-2026-39884

Kubernetes

8.3

CVE-2026-34984

Kubernetes

7.1

CVE-2026-5483

Kubernetes

8.5

CVE-2026-35206

Helm

4.8