Redhat Openshift Origin — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat Openshift Origin, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2014-3496 — CVSS 10.0 (critical): cartridge_repository.rb in OpenShift Origin and Enterprise 1.2.8 through 2.1.1 allows remote attackers to execute arbitrary commands via…
CVE-2016-2160 — CVSS 8.8 (high): Red Hat OpenShift Enterprise 3.2 and OpenShift Origin allow remote authenticated users to execute commands with root privileges by changing…
CVE-2012-5646 — CVSS 7.5 (high): node-util/www/html/restorer.php in the Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to execute arbitrary commands via a…
CVE-2012-5647 — CVSS 5.8 (medium): Open redirect vulnerability in node-util/www/html/restorer.php in Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to…
CVE-2014-0084 — CVSS 5.5 (medium): Ruby gem openshift-origin-node before 2014-02-14 does not contain a cronjob timeout which could result in a denial of service in cron.daily…
CVE-2015-5250 — CVSS 4.0 (medium): The API server in OpenShift Origin 1.0.5 allows remote attackers to cause a denial of service (master process crash) via crafted JSON data.
CVE-2013-0164 — CVSS 3.6 (low): The lockwrap function in port-proxy/bin/openshift-port-proxy-cfg in Red Hat OpenShift Origin before 1.1 allows local users to overwrite…
CVE-2016-3711 — CVSS 3.3 (low): HAproxy in Red Hat OpenShift Enterprise 3.2 and OpenShift Origin allows local users to obtain the internal IP address of a pod by reading…
CVE-2012-5658 — CVSS 2.1 (low): rhc-chk.rb in Red Hat OpenShift Origin before 1.1, when -d (debug mode) is used, outputs the password and other sensitive information in…