Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-5530

Malware in sbrugna...

7.5CVSS6.2AI score0.02204EPSS
Exploits0References8
Veracode
Veracode
added 2019/01/15 8:55 a.m.29 views

Information Disclosure

rhc-chk.rb in Red Hat OpenShift Origin is vulnerable to information disclosure. When -d debug mode is used, the output of the process contains confidential information such as the plaintext database passwords. This leads to unintentional disclosure of confidential in support channels such as a...

2.1CVSS5.5AI score0.00359EPSS
Exploits0References40Affected Software20
CNVD
CNVD
added 2016/07/20 12:0 a.m.2 views

Red Hat OpenShift Origin Information Disclosure Vulnerability

Red Hat OpenShift Origin is an open source Platform as a Service PaaS product from Red Hat, Inc. An information disclosure vulnerability exists in Red Hat OpenShift Origin, which can be exploited by attackers to obtain sensitive information...

5.1CVSS6.2AI score0.00369EPSS
Exploits0References1
CNVD
CNVD
added 2015/09/10 12:0 a.m.4 views

Red Hat OpenShift Origin API Server Denial of Service Vulnerability

Red Hat OpenShift Origin is an open source Platform as a Service PaaS product from Red Hat, Inc. A security vulnerability in the API server of Red Hat OpenShift Origin version 1.0.5 can be exploited by a remote attacker to cause a denial of service crash of the master process with specially craft...

4CVSS6.8AI score0.01952EPSS
Exploits0References1
CVE
CVE
added 2013/02/24 10:0 p.m.84 views

CVE-2012-5658

OpenShift Origin before 1.1 is vulnerable: when running rhc-chk.rb with -d (debug mode), it writes passwords and other sensitive information in cleartext (e.g., in logs or support channels). The root cause is that the rhc-chk output is not redacted in debug mode. Red Hat’s RHSA-2013-0220 confirms...

2.1CVSS6.2AI score0.00359EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2013/02/24 10:0 p.m.74 views

CVE-2013-0164

Affected product: Red Hat OpenShift Origin before 1.1. The CVE-2013-0164 issue resides in the lockwrap function of port-proxy/bin/openshift-port-proxy-cfg, which creates a temporary file in /tmp insecurely. This allows local users to overwrite arbitrary files via a symlink attack on a predictable...

3.6CVSS6.2AI score0.00365EPSS
Exploits0References4Affected Software2
Prion
Prion
added 2013/02/24 9:55 p.m.21 views

Design/Logic Flaw

node-util/www/html/restorer.php in the Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to execute arbitrary commands via a crafted uuid in the PATHINFO...

7.5CVSS8AI score0.02204EPSS
Exploits0References6Affected Software2
CVE
CVE
added 2013/02/24 9:0 p.m.57 views

CVE-2012-5647

CVE-2012-5647 is an open redirect flaw in OpenShift Origin’s restorer.php (node-util), present before version 1.0.5-3. A remote attacker could craft a link to cause PATH_INFO parsing to redirect victims to an arbitrary site, enabling phishing. The issue is documented alongside CVE-2012-5646, with...

5.8CVSS6.8AI score0.01471EPSS
Exploits1References6Affected Software2
CVE
CVE
added 2013/02/24 9:0 p.m.73 views

CVE-2012-5646

CVE-2012-5646 affects Red Hat OpenShift Origin, specifically node-util/restorer.php (path: restorer.php) in the OpenShift Origin package, prior to version 1.0.5-3. A crafted uuid in the PATH_INFO enables remote attackers to execute arbitrary commands with the privileges of the application. The is...

7.5CVSS7.6AI score0.02204EPSS
Exploits0References6Affected Software2
Rows per page
Query Builder