54 matches found
Authorization Bypass
openshift is vulnerable to authorization bypass. The vulnerability exists as remotely authenticated users can access the Docker socket and gain additional privileges via build-pod...
RHEL 7 : Red Hat OpenShift Enterprise 3.2 (RHSA-2016:1094)
"The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:1094 advisory. OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private clo...
kubernetes: Volume security can be sidestepped with innocent emptyDir and subpath
It was found that volume security can be sidestepped with innocent emptyDir and subpath. This could give an attacker with access to a pod full control over the node host by gaining access to docker socket...
CVE-2017-1002101
It was found that volume security can be sidestepped with innocent emptyDir and subpath. This could give an attacker with access to a pod full control over the node host by gaining access to docker socket...
CVE-2017-7412
NixOS 17.03 before 17.03.887 has a world-writable Docker socket, which allows local users to gain privileges by executing docker commands...
Command injection
NixOS 17.03 before 17.03.887 has a world-writable Docker socket, which allows local users to gain privileges by executing docker commands...
CVE-2017-7412
NixOS 17.03 before 17.03.887 has a world-writable Docker socket, which allows local users to gain privileges by executing docker commands...
CVE-2016-3738
Red Hat OpenShift Enterprise 3.2 does not properly restrict access to STI builds, which allows remote authenticated users to access the Docker socket and gain privileges via vectors related to build-pod...
Design/Logic Flaw
Red Hat OpenShift Enterprise 3.2 does not properly restrict access to STI builds, which allows remote authenticated users to access the Docker socket and gain privileges via vectors related to build-pod...
CVE-2016-3738
CVE-2016-3738 affects Red Hat OpenShift Enterprise 3.2, where the STI build process does not restrict access properly. This vulnerability allows remote authenticated users to access the Docker socket and escalate privileges via build-pod related vectors. The issue originates from insufficient acc...
PT-2016-5687 · Red Hat +1 · Red Hat Openshift Enterprise +1
Name of the Vulnerable Software and Affected Versions: Red Hat OpenShift Enterprise version 3.2 Description: The issue is related to improper access restriction to STI builds, allowing remote authenticated users to access the Docker socket and gain privileges. This is achieved through vectors...
Important: Red Hat Security Advisory: Red Hat OpenShift Enterprise 3.2 security update
An update for atomic-openshift and nodejs-node-uuid is now available for Red Hat OpenShift Enterprise 3.2. In addition, all images have been rebuilt on the new RHEL 7.2.4 base image. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...
origin: pod update allows docker socket access via build-pod
A vulnerability was found in the STI build process in OpenShift Enterprise. Access to STI builds was not properly restricted, allowing an attacker to use STI builds to access the Docker socket and escalate their privileges...
CVE-2016-3738
A vulnerability was found in the STI build process in OpenShift Enterprise. Access to STI builds was not properly restricted, allowing an attacker to use STI builds to access the Docker socket and escalate their privileges...