Lucene search
HistoryDec 18, 2012 - 1:55 a.m.
CVE-2012-5622
cve-2012-5622
csrf
openshift
nvd
vulnerability
security
management console
remote attack
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
59.7%
Cross-site request forgery (CSRF) vulnerability in the management console (openshift-console/app/controllers/application_controller.rb) in OpenShift 0.0.5 allows remote attackers to hijack the authentication of arbitrary users via unspecified vectors.
Affected configurations
Node
redhatopenshiftMatch0.0.5
| CPE | Name | Operator | Version |
|---|---|---|---|
| redhat:openshift | redhat openshift | eq | 0.0.5 |
Related
veracode
veracode
Cross-site Request Forgery
2019-01-15 08:51:16
nessus
nessus
RHEL 6 : openshift-console (RHSA-2012:1555)
2018-12-06 00:00:00
prion
prion
Cross site request forgery (csrf)
2012-12-18 01:55:00
nvd
nvd
CVE-2012-5622
2012-12-18 01:55:07
cvelist
cvelist
CVE-2012-5622
2012-12-18 01:00:00
redhat
redhat
(RHSA-2012:1555) Important: openshift-console security update
2012-12-10 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
59.7%
Related for CVE-2012-5622