Home

Description

A privilege escalation vulnerability was found in the incluster-checks tool for OpenShift. The tool creates privileged debug pods with host filesystem access in the shared default namespace, where any user with the standard edit role can exec into them and obtain root access on cluster nodes.

PUBLISHED Reserved 2026-07-13 | Published 2026-07-13 | Updated 2026-07-14 | Assigner redhat




HIGH: 7.5CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

Execution with Unnecessary Privileges

Product status

Default status
affected

Timeline

2026-06-12:Reported to Red Hat.
2026-06-12:Made public.

References

access.redhat.com/security/cve/CVE-2026-15584 vdb-entry

bugzilla.redhat.com/show_bug.cgi?id=2499647 (RHBZ#2499647) issue-tracking

cve.org (CVE-2026-15584)

nvd.nist.gov (CVE-2026-15584)

Download JSON