Vulnerabilities > CVE-2013-4561 - Exposure of Resource to Wrong Sphere vulnerability in Redhat Openshift

CVSS 9.1 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

redhat

CWE-668

critical

NVD

Published: 2022-06-30

Updated: 2024-11-21

Summary

In a openshift node, there is a cron job to update mcollective facts that mishandles a temporary file. This may lead to loss of confidentiality and integrity.

Vulnerable Configurations

Part	Description	Count
Application	Redhat Redhat Openshift -	1

Common Weakness Enumeration (CWE)

CWE-668 - Exposure of Resource to Wrong Sphere

References

https://bugzilla.redhat.com/show_bug.cgi?id=1029652
https://bugzilla.redhat.com/show_bug.cgi?id=1029652
https://github.com/openshift/origin-server/commit/f1abe972794e35a4bfba597694ce829990f14d39
https://github.com/openshift/origin-server/commit/f1abe972794e35a4bfba597694ce829990f14d39