Go modules package
github.com/openshift/source-to-image
pkg:golang/github.com/openshift/source-to-image
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-1103 | Med | 6.1 | < 1.1.10-0.20180427153919-f5cbcbc5cc6f | 1.1.10-0.20180427153919-f5cbcbc5cc6f | Jun 12, 2018 | Openshift Enterprise source-to-image before version 1.1.10 is vulnerable to an improper validation of user input. An attacker who could trick a user into using the command to copy files locally, from a pod, could override files outside of the target directory of the command. |
- affected < 1.1.10-0.20180427153919-f5cbcbc5cc6ffixed 1.1.10-0.20180427153919-f5cbcbc5cc6f
Openshift Enterprise source-to-image before version 1.1.10 is vulnerable to an improper validation of user input. An attacker who could trick a user into using the command to copy files locally, from a pod, could override files outside of the target directory of the command.