Lucene search
RedHatRHSA-2015:1808HistorySep 16, 2015 - 12:00 a.m.
(RHSA-2015:1808) Important: rubygem-openshift-origin-console security update
2015-09-1600:00:00
access.redhat.com
16
0.002 Low
EPSS
Percentile
53.4%
OpenShift Enterprise by Red Hat is the company’s cloud computing
Platform-as-a-Service (PaaS) solution designed for on-premise or
private cloud deployments.
A command injection flaw was found in the rubygem-openshift-origin-
console. A remote, authenticated user permitted to send requests to
the Broker could execute arbitrary commands with elevated privileges
on the Red Hat OpenShift server. (CVE-2015-5274)
All rubygem-openshift-origin-console users are advised to upgrade to this
updated package, which contains a backported patch to correct this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 6 | src | rubygem-openshift-origin-console | < 1.34.1.3-1.el6op | rubygem-openshift-origin-console-1.34.1.3-1.el6op.src.rpm |
| RedHat | 6 | noarch | rubygem-openshift-origin-console | < 1.34.1.3-1.el6op | rubygem-openshift-origin-console-1.34.1.3-1.el6op.noarch.rpm |
Related
cvelist
cvelist
CVE-2015-5274
2015-09-18 14:00:00
nessus
nessus
RHEL 6 : rubygem-openshift-origin-console (RHSA-2015:1808)
2018-12-04 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:07:55
prion
prion
Design/Logic Flaw
2015-09-18 14:59:00
cve
cve
CVE-2015-5274
2015-09-18 14:59:01
nvd
nvd
CVE-2015-5274
2015-09-18 14:59:01