Lucene search

Veracode Vulnerability DatabaseVERACODE:10997

HistoryJan 15, 2019 - 8:55 a.m.

Information Disclosure

2019-01-1508:55:18

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.0004 Low

EPSS

Percentile

12.8%

JSON

rhc-chk.rb in Red Hat OpenShift Origin is vulnerable to information disclosure. When -d (debug mode) is used, the output of the process contains confidential information such as the plaintext database passwords. This leads to unintentional disclosure of confidential in support channels such as a Bugzilla report.

CPENameOperatorVersion
openshift-origin-cartridge-haproxy-1.4eq1.0.2__1.el6op
openshift-origin-node-utileq1.0.5__3.el6op
openshift-origin-node-utileq1.0.5__1.el6op
openshift-origin-cartridge-ruby-1.8eq1.0.4__1.el6op
openshift-consoleeq0.0.5__1.el6op
openshift-consoleeq0.0.5__3.el6
openshift-origin-cartridge-ruby-1.9-scleq1.0.3__1.el6op
openshift-origin-broker-utileq1.0.5__1.el6op
rubygem-openshift-origin-controllereq1.0.7__1.el6op
ruby193-rubygem-passengereq3.0.12__18.el6op

Name	Operator	Version
openshift-origin-cartridge-haproxy-1.4	eq	1.0.2__1.el6op
openshift-origin-node-util	eq	1.0.5__3.el6op
openshift-origin-node-util	eq	1.0.5__1.el6op
openshift-origin-cartridge-ruby-1.8	eq	1.0.4__1.el6op
openshift-console	eq	0.0.5__1.el6op
openshift-console	eq	0.0.5__3.el6
openshift-origin-cartridge-ruby-1.9-scl	eq	1.0.3__1.el6op
openshift-origin-broker-util	eq	1.0.5__1.el6op
rubygem-openshift-origin-controller	eq	1.0.7__1.el6op
ruby193-rubygem-passenger	eq	3.0.12__18.el6op

Rows per page:

1-10 of 291

References

rhn.redhat.com/errata/RHSA-2013-0220.html

access.redhat.com/knowledge/docs/

access.redhat.com/security/updates/classification/#important

bugzilla.redhat.com/show_bug.cgi?id=855264

bugzilla.redhat.com/show_bug.cgi?id=864921

bugzilla.redhat.com/show_bug.cgi?id=872415

bugzilla.redhat.com/show_bug.cgi?id=873765

bugzilla.redhat.com/show_bug.cgi?id=873768

bugzilla.redhat.com/show_bug.cgi?id=874511

bugzilla.redhat.com/show_bug.cgi?id=874750

bugzilla.redhat.com/show_bug.cgi?id=874751

bugzilla.redhat.com/show_bug.cgi?id=874757

bugzilla.redhat.com/show_bug.cgi?id=874799

bugzilla.redhat.com/show_bug.cgi?id=874845

bugzilla.redhat.com/show_bug.cgi?id=875657

bugzilla.redhat.com/show_bug.cgi?id=876324

bugzilla.redhat.com/show_bug.cgi?id=876465

bugzilla.redhat.com/show_bug.cgi?id=876644

bugzilla.redhat.com/show_bug.cgi?id=876937

bugzilla.redhat.com/show_bug.cgi?id=876939

bugzilla.redhat.com/show_bug.cgi?id=877158

bugzilla.redhat.com/show_bug.cgi?id=877407

bugzilla.redhat.com/show_bug.cgi?id=883527

bugzilla.redhat.com/show_bug.cgi?id=885587

bugzilla.redhat.com/show_bug.cgi?id=885598

bugzilla.redhat.com/show_bug.cgi?id=886159

bugzilla.redhat.com/show_bug.cgi?id=888043

bugzilla.redhat.com/show_bug.cgi?id=888056

bugzilla.redhat.com/show_bug.cgi?id=888671

bugzilla.redhat.com/show_bug.cgi?id=889062

bugzilla.redhat.com/show_bug.cgi?id=889088

bugzilla.redhat.com/show_bug.cgi?id=889095

bugzilla.redhat.com/show_bug.cgi?id=889125

bugzilla.redhat.com/show_bug.cgi?id=892781

bugzilla.redhat.com/show_bug.cgi?id=892990

bugzilla.redhat.com/show_bug.cgi?id=893288

bugzilla.redhat.com/show_bug.cgi?id=893895

bugzilla.redhat.com/show_bug.cgi?id=896406

rhn.redhat.com/errata/RHSA-2013-0220.html

wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-01-04

0.0004 Low

EPSS

Percentile

12.8%

JSON

Related for VERACODE:10997