Openshift Security Vulnerabilities and Issues — Openshift CVE List

Lucene search

RedhatOpenshift

5 matches found

CVE•added 2019/11/01 7:15 p.m.•166 views

CVE-2013-0165

cartridges/openshift-origin-cartridge-mongodb-2.2/info/bin/dump.sh in OpenShift does not properly create files in /tmp.

7.5CVSS7.2AI score0.00345EPSS

CVE•added 2019/11/05 10:15 p.m.•85 views

CVE-2013-5123

The mirroring support (-M, --use-mirrors) in Python Pip before 1.5 uses insecure DNS querying and authenticity checks which allows attackers to perform man-in-the-middle attacks.

5.9CVSS5.4AI score0.12863EPSS

CVE•added 2019/11/19 5:15 p.m.•64 views

CVE-2012-6135

RubyGems passenger 4.0.0 betas 1 and 2 allows remote attackers to delete arbitrary files during the startup process.

7.5CVSS7.5AI score0.01273EPSS

CVE•added 2019/11/25 3:15 p.m.•60 views

CVE-2019-10213

OpenShift Container Platform, versions 4.1 and 4.2, does not sanitize secret data written to pod logs when the log level in a given operator is set to Debug or higher. A low privileged user could read pod logs to discover secret material if the log level has already been modified in an operator by ...

6.5CVSS6.1AI score0.00451EPSS

CVE•added 2019/11/15 3:15 p.m.•40 views

CVE-2014-0023

OpenShift: Install script has temporary file creation vulnerability which can result in arbitrary code execution

7.8CVSS7.9AI score0.00121EPSS