CPE Details
RedHat OpenShift Origin 1.0.5
1.0.5
2013-02-25
18h47 +00:00
18h47 +00:00
2013-02-27
16h39 +00:00
16h39 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
CPE Name: cpe:2.3:a:redhat:openshift_origin:1.0.5:*:*:*:*:*:*:*
Informations
Vendor
redhatProduct
openshift_originVersion
1.0.5Related CVE
| CVE ID | Published | Description | Score | Severity |
|---|---|---|---|---|
| Ruby gem openshift-origin-node before 2014-02-14 does not contain a cronjob timeout which could result in a denial of service in cron.daily and cron.weekly. | 5.5 |
Medium |
||
| OpenShift Origin: Improperly validated team names could allow stored XSS attacks | 6.1 |
Medium |
||
| The API server in OpenShift Origin 1.0.5 allows remote attackers to cause a denial of service (master process crash) via crafted JSON data. | 4 |
|||
| rhc-chk.rb in Red Hat OpenShift Origin before 1.1, when -d (debug mode) is used, outputs the password and other sensitive information in cleartext, which allows context-dependent attackers to obtain sensitive information, as demonstrated by including log files or Bugzilla reports in support channels. | 2.1 |
|||
| The lockwrap function in port-proxy/bin/openshift-port-proxy-cfg in Red Hat OpenShift Origin before 1.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp. | 3.6 |
|||
| node-util/www/html/restorer.php in the Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to execute arbitrary commands via a crafted uuid in the PATH_INFO. | 7.5 |
|||
| Open redirect vulnerability in node-util/www/html/restorer.php in Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the PATH_INFO. | 5.8 |
2025©
tesweb SA
