A flaw was found in OpenShift API, as admission checks do not enforce «custom-host» permissions. This issue could allow an attacker to violate the boundaries, as permissions will not be applied.
