Lucene search
K

6802 matches found

RedHat Linux
RedHat Linux
added 2013/04/09 6:8 p.m.42 views

Moderate: Red Hat Security Advisory: rubygem packages security update

This update fixes one security issue in multiple rubygem packages for Red Hat OpenShift Enterprise 1.1.3. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

4.3CVSS7.5AI score0.03622EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2013/04/09 6:7 p.m.30 views

Moderate: Red Hat Security Advisory: haproxy security update

An updated haproxy package that fixes one security issue is now available for Red Hat OpenShift Enterprise 1.1.3. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

5.1CVSS6.4AI score0.05464EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2013/04/02 7:58 p.m.44 views

Moderate: Red Hat Security Advisory: ruby193-ruby, rubygem-json and rubygem-rdoc security update

Updated ruby193-ruby, rubygem-json and rubygem-rdoc packages that fix two security issues are now available for Red Hat OpenShift Enterprise 1.1.3. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores,...

7.5CVSS6.8AI score0.13911EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2013/04/02 7:46 p.m.37 views

Moderate: Red Hat Security Advisory: jenkins security update

An updated jenkins package that fixes one security issue is now available for Red Hat OpenShift Enterprise 1.1.3. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

5.8CVSS5.7AI score0.0157EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2013/04/02 7:42 p.m.47 views

Moderate: Red Hat Security Advisory: rubygem-actionpack and ruby193-rubygem-actionpack security update

Updated rubygem-actionpack and ruby193-rubygem-actionpack packages that fix two security issues are now available for Red Hat OpenShift Enterprise 1.1.3. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base...

4.3CVSS7AI score0.0264EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2013/04/02 7:42 p.m.42 views

Moderate: Red Hat Security Advisory: ruby193-rubygem-activerecord security update

Updated ruby193-rubygem-activerecord packages that fix one security issue are now available for Red Hat OpenShift Enterprise 1.1.3. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

5CVSS7AI score0.03438EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2013/03/12 5:52 p.m.38 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Enterprise 1.1.2 update

Red Hat OpenShift Enterprise 1.1.2, which fixes several security issues, is now available. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for eac...

7.5CVSS6.5AI score0.05281EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2013/02/28 6:53 p.m.51 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Enterprise 1.1.1 update

Red Hat OpenShift Enterprise 1.1.1 is now available. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in...

7.5CVSS6.8AI score0.05673EPSS
Exploits14References28
NVD
NVD
added 2013/02/24 10:55 p.m.19 views

CVE-2013-0164

The lockwrap function in port-proxy/bin/openshift-port-proxy-cfg in Red Hat OpenShift Origin before 1.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp...

3.6CVSS6.2AI score0.00365EPSS
Exploits0References4
NVD
NVD
added 2013/02/24 10:55 p.m.20 views

CVE-2012-5658

rhc-chk.rb in Red Hat OpenShift Origin before 1.1, when -d debug mode is used, outputs the password and other sensitive information in cleartext, which allows context-dependent attackers to obtain sensitive information, as demonstrated by including log files or Bugzilla reports in support channel...

2.1CVSS6.2AI score0.00359EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2013/02/24 10:55 p.m.4 views

CVE-2013-0164

The lockwrap function in port-proxy/bin/openshift-port-proxy-cfg in Red Hat OpenShift Origin before 1.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp...

3.6CVSS5.6AI score0.00365EPSS
Exploits0References7
Prion
Prion
added 2013/02/24 10:55 p.m.23 views

Code injection

The lockwrap function in port-proxy/bin/openshift-port-proxy-cfg in Red Hat OpenShift Origin before 1.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp...

3.6CVSS6.7AI score0.00365EPSS
Exploits0References4Affected Software2
Prion
Prion
added 2013/02/24 10:55 p.m.31 views

Design/Logic Flaw

rhc-chk.rb in Red Hat OpenShift Origin before 1.1, when -d debug mode is used, outputs the password and other sensitive information in cleartext, which allows context-dependent attackers to obtain sensitive information, as demonstrated by including log files or Bugzilla reports in support channel...

2.1CVSS6.6AI score0.00359EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2013/02/24 10:0 p.m.72 views

CVE-2013-0164

Affected product: Red Hat OpenShift Origin before 1.1. The CVE-2013-0164 issue resides in the lockwrap function of port-proxy/bin/openshift-port-proxy-cfg, which creates a temporary file in /tmp insecurely. This allows local users to overwrite arbitrary files via a symlink attack on a predictable...

3.6CVSS6.2AI score0.00365EPSS
Exploits0References4Affected Software2
Cvelist
Cvelist
added 2013/02/24 10:0 p.m.19 views

CVE-2013-0164

The lockwrap function in port-proxy/bin/openshift-port-proxy-cfg in Red Hat OpenShift Origin before 1.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp...

6.2AI score0.00365EPSS
Exploits0References4
CVE
CVE
added 2013/02/24 10:0 p.m.83 views

CVE-2012-5658

OpenShift Origin before 1.1 is vulnerable: when running rhc-chk.rb with -d (debug mode), it writes passwords and other sensitive information in cleartext (e.g., in logs or support channels). The root cause is that the rhc-chk output is not redacted in debug mode. Red Hat’s RHSA-2013-0220 confirms...

2.1CVSS6.2AI score0.00359EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2013/02/24 10:0 p.m.36 views

CVE-2012-5658

rhc-chk.rb in Red Hat OpenShift Origin before 1.1, when -d debug mode is used, outputs the password and other sensitive information in cleartext, which allows context-dependent attackers to obtain sensitive information, as demonstrated by including log files or Bugzilla reports in support channel...

6.2AI score0.00359EPSS
Exploits0References2
NVD
NVD
added 2013/02/24 9:55 p.m.26 views

CVE-2012-5647

Open redirect vulnerability in node-util/www/html/restorer.php in Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the PATHINFO...

5.8CVSS6.6AI score0.01471EPSS
Exploits1References6
NVD
NVD
added 2013/02/24 9:55 p.m.29 views

CVE-2012-5646

node-util/www/html/restorer.php in the Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to execute arbitrary commands via a crafted uuid in the PATHINFO...

7.5CVSS7.4AI score0.02204EPSS
Exploits0References6
Prion
Prion
added 2013/02/24 9:55 p.m.20 views

Open redirect

Open redirect vulnerability in node-util/www/html/restorer.php in Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the PATHINFO...

5.8CVSS7AI score0.01471EPSS
Exploits1References6Affected Software2
Rows per page
Query Builder