Lucene search
RedhatCVE-2013-4281HistoryOct 19, 2022 - 6:15 p.m.
CVE-2013-4281
2022-10-1918:15:11
CWE-276
redhat
web.nvd.nist.gov
26
13
cve-2013-4281
red hat openshift
weak permissions
server_priv.pem
local access
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
7
Confidence
High
EPSS
0
Percentile
5.1%
In Red Hat Openshift 1, weak default permissions are applied to the /etc/openshift/server_priv.pem file on the broker server, which could allow users with local access to the broker to read this file.
Affected configurations
Node
redhatopenshiftMatch1.0-
CNA Affected
[
{
"vendor": "n/a",
"product": "Red Hat Openshift",
"versions": [
{
"version": "Red Hat Openshift 1",
"status": "affected"
}
]
}
]References
Social References
More
Related
nvd
nvd
CVE-2013-4281
2022-10-19 18:15:11
CVE-2014-0234
2020-02-12 01:15:10
prion
prion
Design/Logic Flaw
2022-10-19 18:15:00
Design/Logic Flaw
2020-02-12 01:15:00
cvelist
cvelist
CVE-2013-4281
2022-10-19 00:00:00
CVE-2014-0234
2020-02-12 00:09:56
cve
cve
CVE-2014-0234
2020-02-12 01:15:10
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
7
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVE-2013-4281