CVE-2026-10533
MediumCVSS 5.0Summary
A flaw was found in OpenShift Container Platform that allows a non-privileged user to generate a large volume of events. This can lead to API server performance degradation across the cluster.
Risk Assessment
This vulnerability may result in reduced API server performance, affecting the availability and responsiveness of applications running in the cluster.
Recommendation
It is recommended to monitor and restrict the ability of non-privileged users to create pods and to implement limits on event generation.
Original NVD description (English source)
A flaw was found in OpenShift Container Platform. Completed pods with restartPolicy: Never do not count toward ResourceQuota pod limits, and Kubernetes events are not quota-scoped. A non-privileged user who can create pods in a namespace can exploit this to generate a large volume of events that accumulate in etcd, causing API server performance degradation across the cluster.

