Lucene search
HistoryNov 16, 2014 - 11:59 a.m.
CVE-2014-0233
red hat
openshift
security
cve
nvd
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
72.6%
Red Hat OpenShift Enterprise 2.0 and 2.1 and OpenShift Origin allow remote authenticated users to execute arbitrary commands via shell metacharacters in a directory name that is referenced by a cartridge using the file: URI scheme.
Affected configurations
Node
redhatopenshiftMatch2.0
ORredhatopenshiftMatch2.1enterprise
| CPE | Name | Operator | Version |
|---|---|---|---|
| redhat:openshift | redhat openshift | eq | 2.0 |
| redhat:openshift | redhat openshift | eq | 2.1 |
Related
redhat
redhat
(RHSA-2014:0530) Important: rubygem-openshift-origin-node security update
2014-05-21 00:00:00
(RHSA-2014:0529) Important: rubygem-openshift-origin-node security update
2014-05-21 00:00:00
cvelist
cvelist
CVE-2014-0233
2014-11-16 11:00:00
prion
prion
Design/Logic Flaw
2014-11-16 11:59:00
nessus
nessus
RHEL 6 : rubygem-openshift-origin-node (RHSA-2014:0529)
2018-12-04 00:00:00
RHEL 6 : rubygem-openshift-origin-node (RHSA-2014:0530)
2018-12-04 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:01:55
nvd
nvd
CVE-2014-0233
2014-11-16 11:59:01
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
72.6%
Related for CVE-2014-0233