In Red Hat Openshift 1, weak default permissions are applied to the /etc/openshift/server_priv.pem file on the broker server, which could allow users with local access to the broker to read this file.
References
Link | Resource |
---|---|
https://github.com/openshift/openshift-extras/blob/enterprise-2.0/README.md#security-notice | Third Party Advisory |
https://www.openwall.com/lists/oss-security/2014/06/05/19 | Mailing List Patch Third Party Advisory |
Configurations
History
21 Oct 2022, 17:06
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.openwall.com/lists/oss-security/2014/06/05/19 - Mailing List, Patch, Third Party Advisory | |
References | (MISC) https://github.com/openshift/openshift-extras/blob/enterprise-2.0/README.md#security-notice - Third Party Advisory | |
CPE | cpe:2.3:a:redhat:openshift:1.0:*:*:*:-:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
First Time |
Redhat openshift
Redhat |
19 Oct 2022, 18:24
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-10-19 18:15
Updated : 2023-12-10 14:35
NVD link : CVE-2013-4281
Mitre link : CVE-2013-4281
CVE.ORG link : CVE-2013-4281
JSON object : View
Products Affected
redhat
- openshift
CWE
CWE-276
Incorrect Default Permissions