Unrated severityNVD Advisory· Published Feb 24, 2013· Updated Apr 29, 2026

CVE-2013-0164

Description

The lockwrap function in port-proxy/bin/openshift-port-proxy-cfg in Red Hat OpenShift Origin before 1.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp.

Affected products

Red Hat/Openshift
cpe:2.3:a:redhat:openshift:*:-:enterprise:*:*:*:*:*
Range: <=1.0
Red Hat/Openshift Origin
cpe:2.3:a:redhat:openshift_origin:1.0.5:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

rhn.redhat.com/errata/RHSA-2013-0220.htmlnvd
bugzilla.redhat.com/show_bug.cginvd
github.com/openshift/origin-server/commit/524465f70a32d0eb6bf047e6a05c76c22d52bfa2nvd
github.com/openshift/origin-server/pull/1136nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000