6 matches found
EUVD-2014-0272
Malware in sbrugna...
CVE-2013-4281
In Red Hat Openshift 1, weak default permissions are applied to the /etc/openshift/serverpriv.pem file on the broker server, which could allow users with local access to the broker to read this file...
CVE-2013-4281
In Red Hat Openshift 1, weak default permissions are applied to the /etc/openshift/serverpriv.pem file on the broker server, which could allow users with local access to the broker to read this file...
CVE-2013-4281
In Red Hat Openshift 1, weak default permissions are applied to the /etc/openshift/serverpriv.pem file on the broker server, which could allow users with local access to the broker to read this file...
CVE-2013-4281
CVE-2013-4281 affects Red Hat OpenShift 1 where weak default permissions on /etc/openshift/server_priv.pem on the broker server could enable local users with broker access to read the file. The linked sources corroborate that this is a local-privilege/read access issue. Some connected documents e...
Design/Logic Flaw
The default configuration of broker.conf in Red Hat OpenShift Enterprise 2.x before 2.1 has a password of "mooo" for a Mongo account, which allows remote attackers to hijack the broker by providing this password, related to the openshift.sh script in Openshift Extras before 20130920. NOTE: this m...