CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2018/07/04 12:0 a.m.•3 views

Red Hat OpenShift Container Platform source-to-image component privilege access control vulnerability

The Red Hat OpenShift Container Platform is a Red Hat application platform that enables organizations to develop, deploy, and manage existing container-based applications across physical, virtual, and public cloud infrastructures. source-to-image component is a tool for building and injecting...

9CVSS8.4AI score0.0135EPSS

OSV•added 2018/07/02 5:29 p.m.•6 views

CVE-2018-10843

source-to-image component of Openshift Container Platform before versions atomic-openshift 3.7.53, atomic-openshift 3.9.31 is vulnerable to a privilege escalation which allows the assemble script to run as the root user in a non-privileged container. An attacker can use this flaw to open network...

8.8CVSS5.8AI score0.0135EPSS

NVD•added 2018/07/02 5:29 p.m.•18 views

CVE-2018-10843

9CVSS8.7AI score0.0135EPSS

Prion•added 2018/07/02 5:29 p.m.•18 views

Privilege escalation

9CVSS9.1AI score0.0135EPSS

CVE•added 2018/07/02 5:0 p.m.•68 views

CVE-2018-10843

CVE-2018-10843 affects OpenShift Container Platform 3.9.x (and earlier in the source-to-image component) where the assembler-user LABEL set to root in builder images can allow privilege escalation, enabling the assemble script to run as root inside a non-privileged container. The connected Red Ha...

9CVSS8.8AI score0.0135EPSS

Cvelist•added 2018/07/02 5:0 p.m.•21 views

CVE-2018-10843

8.5CVSS9.2AI score0.0135EPSS

RedHat Linux•added 2018/06/27 6:1 p.m.•0 views

Routing: Malicous Service configuration can bring down routing for an entire shard.

Improper input validation of the Openshift Routing configuration can cause an entire shard to be brought down. A malicious user can use this vulnerability to cause a Denial of Service attack for other users of the router shard...

7.5CVSS5.8AI score0.00849EPSS

Exploits0References4

RedHat Linux•added 2018/06/27 6:1 p.m.•3 views

source-to-image: Builder images with assembler-user LABEL set to root allows attackers to execute arbitrary code

A privilege escalation flaw was found in the source-to-image component of Openshift Container Platform which allows the assemble script to run as the root user in a non-privileged container. An attacker can use this flaw to open network connections, and possibly other actions, on the host which a...

9CVSS5.8AI score0.0135EPSS

Exploits0References4

RedHat Linux•added 2018/06/27 6:1 p.m.•77 views

Important: Red Hat Security Advisory: OpenShift Container Platform 3.9 security, bug fix, and enhancement update

Red Hat OpenShift Container Platform release 3.9.31 is now available with updates to packages and images that address security issues, fix several bugs, and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...

10CVSS7.2AI score0.02219EPSS

Exploits0References61

CNVD•added 2018/06/20 12:0 a.m.•2 views

Red Hat openshift-ansible SSL Client Certificate Authentication Vulnerability

Red Hat OpenShift is a Platform-as-a-Service PaaS cloud computing platform from Red Hat, Inc. that builds, tests, deploys, and runs applications. openshift-ansible is one of the tools for installing, upgrading, and managing OpenShift. A security vulnerability exists in Red Hat openshift-ansible...

10CVSS9.1AI score0.02219EPSS

OSV•added 2018/06/15 1:29 p.m.•5 views

CVE-2018-1085

openshift-ansible before versions 3.9.23, 3.7.46 deploys a misconfigured etcd file that causes the SSL client certificate authentication to be disabled. Quotations around the values of ETCDCLIENTCERTAUTH and ETCDPEERCLIENTCERTAUTH in etcd.conf result in etcd being configured to allow remote users...

9.8CVSS5.8AI score0.02219EPSS

NVD•added 2018/06/15 1:29 p.m.•25 views

CVE-2018-1085

10CVSS9.1AI score0.02219EPSS

Prion•added 2018/06/15 1:29 p.m.•20 views

Design/Logic Flaw

10CVSS9.3AI score0.02219EPSS

CVE•added 2018/06/15 1:0 p.m.•86 views

CVE-2018-1085

CVE-2018-1085 affects OpenShift OpenShift-ansible deployments: OpenShift Ansible before 3.9.23 and 3.7.46 deploys etcd with a misconfigured etcd.conf where ETCD_CLIENT_CERT_AUTH and ETCD_PEER_CLIENT_CERT_AUTH values are quoted, causing SSL client certificate authentication to be disabled. This en...

10CVSS9.3AI score0.02219EPSS

Cvelist•added 2018/06/15 1:0 p.m.•28 views

CVE-2018-1085

9CVSS9.4AI score0.02219EPSS

CNVD•added 2018/06/14 12:0 a.m.•2 views

Routing Denial of Service Vulnerability

routing is an application that supports custom routing in the container platform. A security vulnerability exists in versions prior to routing 3.10, which stems from the program failing to properly perform input validation on Openshift Routing configurations. An attacker can exploit this...

7.5CVSS6.7AI score0.00849EPSS

CNVD•added 2018/06/14 12:0 a.m.•2 views

Red Hat Openshift Enterprise source-to-image design vulnerability

Red Hat OpenShift is a Platform-as-a-Service PaaS cloud computing platform from Red Hat, Inc. that builds, tests, deploys, and runs applications.OpenShift Enterprise is an open-source version of the private cloud. source-to-image is one of the tools used to build repeatable Docker images. A...

6.5CVSS6.4AI score0.01338EPSS

Prion•added 2018/06/12 3:29 p.m.•14 views

Input validation

Openshift Enterprise source-to-image before version 1.1.10 is vulnerable to an improper validation of user input. An attacker who could trick a user into using the command to copy files locally, from a pod, could override files outside of the target directory of the command...

4.3CVSS6.4AI score0.01338EPSS

Exploits0References1Affected Software1

NVD•added 2018/06/12 3:29 p.m.•28 views

CVE-2018-1103

6.5CVSS6.3AI score0.01338EPSS