3 matches found
CVE-2013-0196
A CSRF issue was found in OpenShift Enterprise 1.2. The web console is using 'Basic authentication' and the REST API has no CSRF attack protection mechanism. This can allow an attacker to obtain the credential and the Authorization: header when requesting the REST API via web browser...
OpenShift Enterprise and Online vulnerable to CSRF attack with REST API
A CSRF issue was found in OpenShift Enterprise 1.2. The web console is using 'Basic authentication' and the REST API has no CSRF attack protection mechanism. This can allow an attacker to obtain the credential and the Authorization: header when requesting the REST API via web browser...
Important: Red Hat Enhancement Advisory: Red Hat OpenShift Enterprise 1.2 Node Release Advisory
Red Hat OpenShift Enterprise 1.2 is now available which fixes several bugs and introduces feature enhancements. OpenShift Enterprise is a cloud computing Platform-as-a-Service PaaS solution from Red Hat, and is designed for on-premise or private cloud deployments. The OpenShift Enterprise 1.2...