VYPR

Openshift

by Red Hat

Source repositories

CVEs (144)

  • CVE-2012-5658Feb 24, 2013
    risk 0.00cvss epss 0.00

    rhc-chk.rb in Red Hat OpenShift Origin before 1.1, when -d (debug mode) is used, outputs the password and other sensitive information in cleartext, which allows context-dependent attackers to obtain sensitive information, as demonstrated by including log files or Bugzilla…

  • CVE-2012-5647Feb 24, 2013
    risk 0.00cvss epss 0.01

    Open redirect vulnerability in node-util/www/html/restorer.php in Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the PATH_INFO.

  • CVE-2012-5646Feb 24, 2013
    risk 0.00cvss epss 0.02

    node-util/www/html/restorer.php in the Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to execute arbitrary commands via a crafted uuid in the PATH_INFO.

  • CVE-2012-5622Dec 18, 2012
    risk 0.00cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in the management console (openshift-console/app/controllers/application_controller.rb) in OpenShift 0.0.5 allows remote attackers to hijack the authentication of arbitrary users via unspecified vectors.

Page 8 of 8