NVD - Results

Sort results by:

Search Results (Refine Search)

Search Parameters:

Results Type: Overview
Keyword (text search): cpe:2.3:a:redhat:openshift_origin:-:*:*:*:*:*:*:*
CPE Name Search: true

There are 6 matching records.

Displaying matches 1 through 6.

Vuln ID	Summary	CVSS Severity
CVE-2014-0084	Ruby gem openshift-origin-node before 2014-02-14 does not contain a cronjob timeout which could result in a denial of service in cron.daily and cron.weekly. Published: November 21, 2019; 10:15:11 AM -0500	V4.0:(not available) V3.1: 5.5 MEDIUM V2.0: 2.1 LOW
CVE-2014-3592	OpenShift Origin: Improperly validated team names could allow stored XSS attacks Published: November 13, 2019; 11:15:10 AM -0500	V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM
CVE-2016-3711	HAproxy in Red Hat OpenShift Enterprise 3.2 and OpenShift Origin allows local users to obtain the internal IP address of a pod by reading the "OPENSHIFT_[namespace]_SERVERID" cookie. Published: June 08, 2016; 1:59:06 PM -0400	V4.0:(not available) V3.0: 3.3 LOW V2.0: 2.1 LOW
CVE-2016-2160	Red Hat OpenShift Enterprise 3.2 and OpenShift Origin allow remote authenticated users to execute commands with root privileges by changing the root password in an sti builder image. Published: June 08, 2016; 1:59:03 PM -0400	V4.0:(not available) V3.0: 8.8 HIGH V2.0: 9.0 HIGH
CVE-2012-5647	Open redirect vulnerability in node-util/www/html/restorer.php in Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the PATH_INFO. Published: February 24, 2013; 4:55:01 PM -0500	V4.0:(not available) V3.x:(not available) V2.0: 5.8 MEDIUM
CVE-2012-5646	node-util/www/html/restorer.php in the Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to execute arbitrary commands via a crafted uuid in the PATH_INFO. Published: February 24, 2013; 4:55:00 PM -0500	V4.0:(not available) V3.x:(not available) V2.0: 7.5 HIGH