Threats Tagged 'cve-2025-2843'
View all threats tagged with 'cve-2025-2843'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2025-2843'
Click on any threat for detailed analysis and mitigation recommendations
Red Hat Security Advisory: Cluster Observability Operator 1.3.0CVE-2025-2843 0 The 1.3 release of COO. Join the discussion | GCVE Database | 11/12/2025, 16:21:08 UTC Added: 06/17/2026, 10:00:55 UTC |
CVE-2025-2843: Incorrect Privilege Assignment in rhobs observability-operatorCVE-2025-2843 0 A flaw was found in the Observability Operator. The Operator creates a ServiceAccount with *ClusterRole* upon deployment of the *Namespace-Scoped* Custom Resource MonitorStack. This issue allows an adversarial Kubernetes Account with only namespaced-level roles, for example, a tenant controlling a namespace, to create a MonitorStack in the authorized namespace and then elevate permission to the cluster level by impersonating the ServiceAccount created by the Operator, resulting in privilege escalation and other issues. Join the discussion | CVE Database V5 | 11/12/2025, 16:36:04 UTC Added: 11/12/2025, 17:17:39 UTC |
Showing 1 to 2 of 2 results