Vulnerabilities > CVE-2014-0234 - Insecure Default Initialization of Resource vulnerability in Redhat Openshift

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

redhat

CWE-1188

critical

nessus

NVD

Published: 2020-02-12

Updated: 2023-02-13

Summary

The default configuration of broker.conf in Red Hat OpenShift Enterprise 2.x before 2.1 has a password of "mooo" for a Mongo account, which allows remote attackers to hijack the broker by providing this password, related to the openshift.sh script in Openshift Extras before 20130920. NOTE: this may overlap CVE-2013-4253 and CVE-2013-4281.

Vulnerable Configurations

Part	Description	Count
Application	Redhat Redhat Openshift 1.0 Redhat Openshift 1.2 Redhat Openshift 1.2.7 Redhat Openshift 1.2.8 Redhat Openshift 2.0 Redhat Openshift 2.0.5 Redhat Openshift 2.0.6	7

Common Weakness Enumeration (CWE)

CWE-1188 - Insecure Default Initialization of Resource

Nessus

NASL family	Red Hat Local Security Checks
NASL id	REDHAT-RHSA-2014-0487.NASL
description	Red Hat OpenShift Enterprise release 2.1, which fixes one security issue, several bugs, and includes various enhancements, is now available. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. OpenShift Enterprise by Red Hat is the company
last seen	2020-06-10
modified	2018-12-06
plugin id	119440
published	2018-12-06
reporter	This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/119440
title	RHEL 6 : openshift (RHSA-2014:0487)

Redhat

rpms

CharLS-0:1.0-1.el6op
CharLS-debuginfo-0:1.0-1.el6op
CharLS-devel-0:1.0-1.el6op
ImageMagick-debuginfo-0:6.5.4.7-7.el6_5
ImageMagick-devel-0:6.5.4.7-7.el6_5
ImageMagick-doc-0:6.5.4.7-7.el6_5
ImageMagick-perl-0:6.5.4.7-7.el6_5
activemq-0:5.9.0-5.redhat.610328.el6op
activemq-client-0:5.9.0-5.redhat.610328.el6op
armadillo-0:3.800.2-1.el6op
armadillo-debuginfo-0:3.800.2-1.el6op
armadillo-devel-0:3.800.2-1.el6op
atlas-debuginfo-0:3.8.4-2.el6
atlas-devel-0:3.8.4-2.el6
blas-devel-0:3.2.1-4.el6
cfitsio-0:3.240-3.el6op
cfitsio-debuginfo-0:3.240-3.el6op
cfitsio-devel-0:3.240-3.el6op
cfitsio-docs-0:3.240-3.el6op
cfitsio-static-0:3.240-3.el6op
facter-0:1.6.6-1.el6op
freexl-0:1.0.0d-1.el6op
freexl-debuginfo-0:1.0.0d-1.el6op
freexl-devel-0:1.0.0d-1.el6op
gd-debuginfo-0:2.0.35-11.el6
gd-devel-0:2.0.35-11.el6
gdal-0:1.9.2-8.el6op
gdal-debuginfo-0:1.9.2-8.el6op
gdal-devel-0:1.9.2-8.el6op
gdal-doc-0:1.9.2-8.el6op
gdal-java-0:1.9.2-8.el6op
gdal-javadoc-0:1.9.2-8.el6op
gdal-libs-0:1.9.2-8.el6op
gdal-perl-0:1.9.2-8.el6op
gdal-python-0:1.9.2-8.el6op
gdal-ruby-0:1.9.2-8.el6op
geos-0:3.3.2-1.el6op
geos-debuginfo-0:3.3.2-1.el6op
geos-devel-0:3.3.2-1.el6op
ghostscript-debuginfo-0:8.70-19.el6
ghostscript-devel-0:8.70-19.el6
ghostscript-doc-0:8.70-19.el6
gpsbabel-0:1.4.4-4.el6op
gpsbabel-debuginfo-0:1.4.4-4.el6op
haproxy-0:1.4.22-5.el6op
haproxy-debuginfo-0:1.4.22-5.el6op
haproxy15side-0:1.5-0.1.dev19.el6op
haproxy15side-debuginfo-0:1.5-0.1.dev19.el6op
hdf5-0:1.8.5.patch1-7.el6op
hdf5-debuginfo-0:1.8.5.patch1-7.el6op
hdf5-devel-0:1.8.5.patch1-7.el6op
hdf5-mpich2-0:1.8.5.patch1-7.el6op
hdf5-mpich2-devel-0:1.8.5.patch1-7.el6op
hdf5-mpich2-static-0:1.8.5.patch1-7.el6op
hdf5-openmpi-0:1.8.5.patch1-7.el6op
hdf5-openmpi-devel-0:1.8.5.patch1-7.el6op
hdf5-openmpi-static-0:1.8.5.patch1-7.el6op
hdf5-static-0:1.8.5.patch1-7.el6op
icu-debuginfo-0:4.2.1-9.1.el6_2
jasper-debuginfo-0:1.900.1-15.el6_1.1
jasper-devel-0:1.900.1-15.el6_1.1
jboss-eap6-index-0:6.0.1.GA-2.el6op
jboss-eap6-modules-0:6.0.0.GA-8.el6op
jboss-openshift-metrics-module-0:1.0.2.redhat_1-1.2.el6_5
jenkins-0:1.509.1-1.el6op
jenkins-plugin-openshift-0:0.6.28-1.el6op
js-0:1.70-12.el6op
js-debuginfo-0:1.70-12.el6op
js-devel-0:1.70-12.el6op
json-c-0:0.10-3.el6op
json-c-debuginfo-0:0.10-3.el6op
json-c-devel-0:0.10-3.el6op
json-c-doc-0:0.10-3.el6op
jython-0:2.2.1-4.8.el6
jython-debuginfo-0:2.2.1-4.8.el6
jython-demo-0:2.2.1-4.8.el6
jython-javadoc-0:2.2.1-4.8.el6
jython-manual-0:2.2.1-4.8.el6
lapack-debuginfo-0:3.2.1-4.el6
lapack-devel-0:3.2.1-4.el6
lcms-debuginfo-0:1.19-1.el6
lcms-devel-0:1.19-1.el6
libc-client-0:2007e-11.el6
libc-client-debuginfo-0:2007e-11.el6
libc-client-devel-0:2007e-11.el6
libcgroup-debuginfo-0:0.40.rc1-5.el6_5.1
libcgroup-pam-0:0.40.rc1-5.el6_5.1
libdap-0:3.11.0-1.el6op
libdap-debuginfo-0:3.11.0-1.el6op
libdap-devel-0:3.11.0-1.el6op
libdap-doc-0:3.11.0-1.el6op
libestr-0:0.1.5-1.el6op
libestr-debuginfo-0:0.1.5-1.el6op
libestr-devel-0:0.1.5-1.el6op
libev-0:4.04-4.el6op
libev-debuginfo-0:4.04-4.el6op
libev-devel-0:4.04-4.el6op
libffi-debuginfo-0:3.0.5-3.2.el6
libffi-devel-0:3.0.5-3.2.el6
libgeotiff-0:1.2.5-5.el6op
libgeotiff-debuginfo-0:1.2.5-5.el6op
libgeotiff-devel-0:1.2.5-5.el6op
libgta-0:1.0.2-2.el6op
libgta-debuginfo-0:1.0.2-2.el6op
libgta-devel-0:1.0.2-2.el6op
libgta-doc-0:1.0.2-2.el6op
libicu-devel-0:4.2.1-9.1.el6_2
libmcrypt-0:2.5.8-10.el6op
libmcrypt-debuginfo-0:2.5.8-10.el6op
libmcrypt-devel-0:2.5.8-10.el6op
libmongodb-0:2.4.6-2.el6op
libreadline-java-0:0.8.0-24.3.el6
libreadline-java-debuginfo-0:0.8.0-24.3.el6
libreadline-java-javadoc-0:0.8.0-24.3.el6
libspatialite-0:2.4.0-0.6.RC4.el6op
libspatialite-debuginfo-0:2.4.0-0.6.RC4.el6op
libspatialite-devel-0:2.4.0-0.6.RC4.el6op
libwebp-0:0.3.0-2.el6op
libwebp-debuginfo-0:0.3.0-2.el6op
libwebp-devel-0:0.3.0-2.el6op
libwebp-java-0:0.3.0-2.el6op
libwebp-tools-0:0.3.0-2.el6op
maven3-0:3.0.3-4
mod_passenger-0:3.0.21-9.el6op
mongodb-0:2.4.6-2.el6op
mongodb-debuginfo-0:2.4.6-2.el6op
mongodb-server-0:2.4.6-2.el6op
netcdf-0:4.1.1-3.el6op.3
netcdf-debuginfo-0:4.1.1-3.el6op.3
netcdf-devel-0:4.1.1-3.el6op.3
netcdf-static-0:4.1.1-3.el6op.3
nodejs010-nodejs-bignumber.js-0:1.1.1-2.el6op
nodejs010-nodejs-bson-0:0.2.2-3.el6op
nodejs010-nodejs-bson-debuginfo-0:0.2.2-3.el6op
nodejs010-nodejs-buffer-crc32-0:0.2.1-2.el6op
nodejs010-nodejs-bytes-0:0.2.1-2.el6op
nodejs010-nodejs-colors-0:0.6.2-2.el6op
nodejs010-nodejs-commander-0:1.1.1-3.el6op
nodejs010-nodejs-connect-0:2.7.10-2.el6op
nodejs010-nodejs-cookie-0:0.1.0-2.el6op
nodejs010-nodejs-cookie-signature-0:1.0.1-2.el6op
nodejs010-nodejs-debug-0:0.7.2-1.el6op
nodejs010-nodejs-express-0:3.2.5-2.el6op
nodejs010-nodejs-formidable-0:1.0.14-3.el6op
nodejs010-nodejs-fresh-0:0.2.0-1.el6op
nodejs010-nodejs-generic-pool-0:2.0.3-3.el6op
nodejs010-nodejs-keypress-0:0.2.1-1.el6op
nodejs010-nodejs-methods-0:0.0.1-2.el6op
nodejs010-nodejs-mongodb-0:1.3.17-2.el6op
nodejs010-nodejs-mysql-0:2.0.0-alpha9.1.el6op
nodejs010-nodejs-node-static-0:0.6.9-2.el6op
nodejs010-nodejs-optimist-0:0.4.0-2.el6op
nodejs010-nodejs-options-0:0.0.5-2.el6op
nodejs010-nodejs-pause-0:0.0.1-2.el6op
nodejs010-nodejs-pg-0:0.12.3-3.el6op
nodejs010-nodejs-pg-debuginfo-0:0.12.3-3.el6op
nodejs010-nodejs-range-parser-0:0.0.4-2.el6op
nodejs010-nodejs-require-all-0:0.0.8-2.el6op
nodejs010-nodejs-send-0:0.1.4-2.el6op
nodejs010-nodejs-supervisor-0:0.5.2-3.el6op
nodejs010-nodejs-tinycolor-0:0.0.1-5.el6op
nodejs010-nodejs-wordwrap-0:0.0.2-2.el6op
nodejs010-nodejs-ws-0:0.4.25-8.el6op
nodejs010-nodejs-ws-debuginfo-0:0.4.25-8.el6op
openshift-enterprise-release-0:2.1.0-1.el6op
openshift-enterprise-upgrade-broker-0:2.1.0-1.el6op
openshift-enterprise-upgrade-node-0:2.1.0-1.el6op
openshift-enterprise-yum-validator-0:2.1.0-1.el6op
openshift-origin-broker-0:1.16.1.3-1.el6op
openshift-origin-broker-util-0:1.23.8.1-1.el6op
openshift-origin-cartridge-cron-0:1.21.2-1.el6op
openshift-origin-cartridge-dependencies-optional-jbosseap-0:1.23.3.1-1.el6op
openshift-origin-cartridge-dependencies-optional-jbossews-0:1.23.3.1-1.el6op
openshift-origin-cartridge-dependencies-optional-nodejs-0:1.23.3.1-1.el6op
openshift-origin-cartridge-dependencies-optional-perl-0:1.23.3.1-1.el6op
openshift-origin-cartridge-dependencies-optional-php-0:1.23.3.1-1.el6op
openshift-origin-cartridge-dependencies-optional-python-0:1.23.3.1-1.el6op
openshift-origin-cartridge-dependencies-optional-ruby-0:1.23.3.1-1.el6op
openshift-origin-cartridge-dependencies-recommended-jbosseap-0:1.23.3.1-1.el6op
openshift-origin-cartridge-dependencies-recommended-jbossews-0:1.23.3.1-1.el6op
openshift-origin-cartridge-dependencies-recommended-nodejs-0:1.23.3.1-1.el6op
openshift-origin-cartridge-dependencies-recommended-perl-0:1.23.3.1-1.el6op
openshift-origin-cartridge-dependencies-recommended-php-0:1.23.3.1-1.el6op
openshift-origin-cartridge-dependencies-recommended-python-0:1.23.3.1-1.el6op
openshift-origin-cartridge-dependencies-recommended-ruby-0:1.23.3.1-1.el6op
openshift-origin-cartridge-diy-0:1.21.3.1-1.el6op
openshift-origin-cartridge-haproxy-0:1.23.5.3-1.el6op
openshift-origin-cartridge-jbosseap-0:2.16.3.4-1.el6op
openshift-origin-cartridge-jbossews-0:1.22.3.4-1.el6op
openshift-origin-cartridge-jenkins-0:1.20.3.3-1.el6op
openshift-origin-cartridge-jenkins-client-0:1.19.3-1.el6op
openshift-origin-cartridge-mock-0:1.18.2-1.el6op
openshift-origin-cartridge-mock-plugin-0:1.18.2-1.el6op
openshift-origin-cartridge-mysql-0:1.23.4.3-1.el6op
openshift-origin-cartridge-nodejs-0:1.24.3.3-1.el6op
openshift-origin-cartridge-perl-0:1.22.5.3-1.el6op
openshift-origin-cartridge-php-0:1.23.3.4-1.el6op
openshift-origin-cartridge-postgresql-0:1.23.3.3-1.el6op
openshift-origin-cartridge-python-0:1.23.4.3-1.el6op
openshift-origin-cartridge-ruby-0:1.23.3.3-1.el6op
openshift-origin-console-0:1.16.2.3-1.el6op
openshift-origin-logshifter-0:1.5.2-1.el6op
openshift-origin-msg-common-0:1.19.2-1.el6op
openshift-origin-msg-node-mcollective-0:1.22.2-1.el6op
openshift-origin-node-proxy-0:1.22.3.1-1.el6op
openshift-origin-node-util-0:1.22.6.1-1.el6op
openshift-origin-port-proxy-0:1.9.1-1.el6op
openshift-origin-util-scl-0:1.17.1-1.el6op
pam_openshift-0:1.12.1-1.el6op
pam_openshift-debuginfo-0:1.12.1-1.el6op
perl-App-cpanminus-0:1.4008-1.el6op
perl-Class-Accessor-0:0.31-6.1.el6
perl-Class-DBI-0:3.0.17-5.el6op
perl-Class-DBI-Pg-0:0.09-9.el6op
perl-Class-Data-Inheritable-0:0.08-3.1.el6
perl-Class-Factory-Util-0:1.7-5.el6op
perl-Class-Trigger-0:0.13-2.1.el6
perl-Clone-0:0.31-3.1.el6
perl-Clone-debuginfo-0:0.31-3.1.el6
perl-DBIx-ContextualFetch-0:1.03-7.el6op
perl-DateTime-Format-Builder-0:0.7901-4.el6op
perl-DateTime-Format-Pg-0:0.16004-3.el6op
perl-DateTime-Format-Strptime-0:1.1000-3.el6op
perl-IO-stringy-0:2.110-10.1.el6
perl-Ima-DBI-0:0.35-7.el6op
perl-JSON-0:2.15-5.el6
perl-UNIVERSAL-moniker-0:0.08-9.el6op
perl-YAML-0:0.70-4.el6
php-bcmath-0:5.3.3-27.el6_5
php-debuginfo-0:5.3.3-27.el6_5
php-devel-0:5.3.3-27.el6_5
php-extras-debuginfo-0:5.3.3-3.el6op
php-fpm-0:5.3.3-27.el6_5
php-imap-0:5.3.3-27.el6_5
php-intl-0:5.3.3-27.el6_5
php-mbstring-0:5.3.3-27.el6_5
php-mcrypt-0:5.3.3-3.el6op
php-pear-MDB2-0:2.5.0-0.3.b3.el6op
php-pear-MDB2-Driver-pgsql-0:1.5.0-0.1.b3.el6op
php-pecl-imagick-0:3.1.2-1.el6_5
php-pecl-imagick-debuginfo-0:3.1.2-1.el6_5
php-pecl-xdebug-0:2.1.4-1.el6op
php-pecl-xdebug-debuginfo-0:2.1.4-1.el6op
php-process-0:5.3.3-27.el6_5
php54-php-pecl-imagick-0:3.1.2-1.el6op
php54-php-pecl-imagick-debuginfo-0:3.1.2-1.el6op
php54-php-pecl-xdebug-0:2.2.3-3.el6op
php54-php-pecl-xdebug-debuginfo-0:2.2.3-3.el6op
postgis-0:1.5.3-1.el6op
postgis-debuginfo-0:1.5.3-1.el6op
postgis-docs-0:1.5.3-1.el6op
postgresql-ip4r-0:1.05-1.el6op
postgresql-ip4r-debuginfo-0:1.05-1.el6op
postgresql92-pgRouting-0:2.0.0-2.el6op
postgresql92-pgRouting-debuginfo-0:2.0.0-2.el6op
postgresql92-postgis-0:2.1.0-0.el6op
postgresql92-postgis-debuginfo-0:2.1.0-0.el6op
postgresql92-postgis-docs-0:2.1.0-0.el6op
postgresql92-postgis-utils-0:2.1.0-0.el6op
proj-0:4.7.0-1.el6op
proj-debuginfo-0:4.7.0-1.el6op
proj-devel-0:4.7.0-1.el6op
proj-nad-0:4.7.0-1.el6op
python-virtualenv-0:1.10.1-1.el6op
python27-mod_wsgi-0:3.4-5.el6op
python27-mod_wsgi-debuginfo-0:3.4-5.el6op
python27-numpy-0:1.4.1-10.el6op
python27-numpy-debuginfo-0:1.4.1-10.el6op
python27-numpy-f2py-0:1.4.1-10.el6op
python27-python-pip-0:1.4-7.el6op
python27-python-pip-virtualenv-0:1.4-7.el6op
quartz-0:2.2.1.redhat_1-1.el6_5
rhc-0:1.23.7.1-1.el6op
rsyslog7-0:7.4.7-5.4.el6op
rsyslog7-crypto-0:7.4.7-5.4.el6op
rsyslog7-debuginfo-0:7.4.7-5.4.el6op
rsyslog7-gnutls-0:7.4.7-5.4.el6op
rsyslog7-libdbi-0:7.4.7-5.4.el6op
rsyslog7-mmjsonparse-0:7.4.7-5.4.el6op
rsyslog7-mmopenshift-0:7.4.7-5.4.el6op
rsyslog7-mysql-0:7.4.7-5.4.el6op
rsyslog7-pgsql-0:7.4.7-5.4.el6op
rsyslog7-snmp-0:7.4.7-5.4.el6op
ruby-RMagick-0:2.13.1-6.el6op.1
ruby-RMagick-debuginfo-0:2.13.1-6.el6op.1
ruby-mysql-0:2.8.2-2.el6op
ruby-mysql-debuginfo-0:2.8.2-2.el6op
ruby-nokogiri-0:1.4.3.1-1.el6op
ruby-sqlite3-0:1.3.3-4.el6op
ruby193-facter-0:1.6.6-3.el6op
ruby193-js-1:1.8.5-10.el6op
ruby193-js-debuginfo-1:1.8.5-10.el6op
ruby193-js-devel-1:1.8.5-10.el6op
ruby193-mcollective-0:2.4.1-5.el6op
ruby193-mcollective-client-0:2.4.1-5.el6op
ruby193-mcollective-common-0:2.4.1-5.el6op
ruby193-mod_passenger-0:3.0.21-3.el6op
ruby193-ruby-mysql-0:2.8.2-8.el6op
ruby193-ruby-mysql-debuginfo-0:2.8.2-8.el6op
ruby193-ruby-selinux-0:2.0.94-3.el6op
ruby193-ruby-selinux-debuginfo-0:2.0.94-3.el6op
ruby193-ruby-wrapper-0:0.0.2-2.el6op
ruby193-rubygem-bson-0:1.8.1-1.el6op
ruby193-rubygem-bson_ext-0:1.8.1-2.el6op
ruby193-rubygem-bson_ext-debuginfo-0:1.8.1-2.el6op
ruby193-rubygem-chunky_png-0:1.2.6-3.el6op
ruby193-rubygem-commander-0:4.0.3-5.el6op
ruby193-rubygem-compass-0:0.12.2-4.el6op
ruby193-rubygem-compass-rails-0:1.0.3-2.el6op
ruby193-rubygem-daemon_controller-0:1.1.0-1.el6op
ruby193-rubygem-daemons-0:1.0.10-4.el6op
ruby193-rubygem-dnsruby-0:1.53-3.el6op
ruby193-rubygem-fastthread-0:1.0.7-7.el6op
ruby193-rubygem-fastthread-debuginfo-0:1.0.7-7.el6op
ruby193-rubygem-file-tail-0:1.0.5-5.el6op
ruby193-rubygem-formtastic-0:1.2.4-2.el6op
ruby193-rubygem-fssm-0:0.2.8.1-2.el6op
ruby193-rubygem-haml-0:4.0.3-2.el6op
ruby193-rubygem-highline-0:1.6.16-1.el6op
ruby193-rubygem-httpclient-0:2.3.4.1-1.el6op
ruby193-rubygem-jquery-rails-0:3.1.0-1.el6op
ruby193-rubygem-json-0:1.7.3-5.el6op
ruby193-rubygem-json-debuginfo-0:1.7.3-5.el6op
ruby193-rubygem-json_pure-0:1.7.3-1.el6
ruby193-rubygem-minitest-0:3.5.0-3.el6op
ruby193-rubygem-mongo-0:1.8.1-1.el6op
ruby193-rubygem-mongoid-0:3.1.4-2.el6op
ruby193-rubygem-moped-0:1.5.0-2.el6op
ruby193-rubygem-net-ldap-0:0.3.1-1.el6op
ruby193-rubygem-net-ldap-doc-0:0.3.1-1.el6op
ruby193-rubygem-open4-0:1.3.0-3.el6op
ruby193-rubygem-origin-0:1.0.7-2.el6op
ruby193-rubygem-parallel-0:0.8.0-1.el6op
ruby193-rubygem-parseconfig-0:1.0.2-1.el6op
ruby193-rubygem-passenger-0:3.0.21-3.el6op
ruby193-rubygem-passenger-debuginfo-0:3.0.21-3.el6op
ruby193-rubygem-passenger-devel-0:3.0.21-3.el6op
ruby193-rubygem-passenger-native-0:3.0.21-3.el6op
ruby193-rubygem-passenger-native-libs-0:3.0.21-3.el6op
ruby193-rubygem-pg-0:0.12.2-4.el6op
ruby193-rubygem-pg-debuginfo-0:0.12.2-4.el6op
ruby193-rubygem-rdiscount-0:1.6.8-3.el6op
ruby193-rubygem-rdiscount-debuginfo-0:1.6.8-3.el6op
ruby193-rubygem-regin-0:0.3.7-4.el6op
ruby193-rubygem-rest-client-0:1.6.1-2.el6op
ruby193-rubygem-ruby2ruby-0:1.3.1-2.el6op
ruby193-rubygem-ruby_parser-0:2.3.1-3.el6op
ruby193-rubygem-safe_yaml-0:0.9.1-1.el6op
ruby193-rubygem-sass-twitter-bootstrap-0:2.0.1-1.el6op
ruby193-rubygem-sexp_processor-0:3.2.0-2.el6op
ruby193-rubygem-spruz-0:0.2.5-5.el6op
ruby193-rubygem-state_machine-0:1.1.2-7.el6op
ruby193-rubygem-stomp-0:1.2.14-1.el6op
ruby193-rubygem-syslog-logger-0:1.6.8-1.el6op
ruby193-rubygem-systemu-0:2.5.2-2.el6op
ruby193-rubygem-term-ansicolor-0:1.0.7-2.el6op
ruby193-rubygem-xml-simple-0:1.0.12-10.el6op
rubygem-ParseTree-0:3.0.5-2.el6op
rubygem-RubyInline-0:3.8.4-3.el6op
rubygem-ZenTest-0:4.3.3-1.el6op
rubygem-archive-tar-minitar-0:0.5.2-3.1.el6op
rubygem-bson-0:1.8.3-1.el6op
rubygem-bson_ext-0:1.8.3-1.el6op
rubygem-bson_ext-debuginfo-0:1.8.3-1.el6op
rubygem-bundler-0:1.0.21-3.el6op
rubygem-commander-0:4.0.3-4.el6op
rubygem-diff-lcs-0:1.1.2-5.el6op
rubygem-fastthread-0:1.0.7-4.el6op
rubygem-file-tail-0:1.0.5-4.el6op
rubygem-highline-0:1.6.16-1.el6op
rubygem-httpclient-0:2.3.2-1.el6op
rubygem-json-0:1.7.3-2.el6op
rubygem-json-debuginfo-0:1.7.3-2.el6op
rubygem-net-scp-0:1.1.2-2.el6op
rubygem-net-ssh-0:2.7.0-1.el6op
rubygem-net-ssh-gateway-0:1.2.0-1.el6op
rubygem-net-ssh-multi-0:1.2.0-1.el6op
rubygem-nokogiri-0:1.4.3.1-1.el6op
rubygem-nokogiri-debuginfo-0:1.4.3.1-1.el6op
rubygem-open4-0:1.3.0-2.el6op
rubygem-openshift-origin-admin-console-0:1.20.2.1-1.el6op
rubygem-openshift-origin-auth-remote-user-0:1.19.6.2-1.el6op
rubygem-openshift-origin-common-0:1.22.5.1-1.el6op
rubygem-openshift-origin-console-0:1.23.4.2-1.el6op
rubygem-openshift-origin-container-selinux-0:0.8.1.1-1.el6op
rubygem-openshift-origin-controller-0:1.23.10.1-1.el6op
rubygem-openshift-origin-dns-nsupdate-0:1.16.2.1-1.el6op
rubygem-openshift-origin-frontend-apache-mod-rewrite-0:0.5.2.1-1.el6op
rubygem-openshift-origin-frontend-apache-vhost-0:0.5.2.2-1.el6op
rubygem-openshift-origin-frontend-apachedb-0:0.4.1-1.el6op
rubygem-openshift-origin-frontend-haproxy-sni-proxy-0:0.3.1-1.el6op
rubygem-openshift-origin-frontend-nodejs-websocket-0:0.4.1-1.el6op
rubygem-openshift-origin-msg-broker-mcollective-0:1.23.3.1-1.el6op
rubygem-openshift-origin-node-0:1.23.9.3-1.el6op
rubygem-openshift-origin-routing-activemq-0:0.4.1-1.el6op
rubygem-parseconfig-0:0.5.2-5.el6op
rubygem-passenger-0:3.0.21-9.el6op
rubygem-passenger-debuginfo-0:3.0.21-9.el6op
rubygem-passenger-devel-0:3.0.21-9.el6op
rubygem-passenger-native-0:3.0.21-9.el6op
rubygem-passenger-native-libs-0:3.0.21-9.el6op
rubygem-rack-1:1.3.0-4.el6op
rubygem-rake-0:0.8.7-2.1.el6
rubygem-regin-0:0.3.7-4.el6op
rubygem-ruby2ruby-0:1.2.4-3.el6op
rubygem-ruby_parser-0:2.0.4-6.el6op
rubygem-sexp_processor-0:3.0.4-2.el6op
rubygem-spruz-0:0.2.5-4.el6op
rubygem-sqlite3-0:1.3.3-4.el6op
rubygem-sqlite3-debuginfo-0:1.3.3-4.el6op
rubygem-stomp-0:1.1.8-1.el6op
rubygem-systemu-0:1.2.0-3.el6op
rubygem-test-unit-0:2.2.0-3.el6op
rubygem-thor-0:0.14.6-2.el6op
rubygem-thread-dump-0:0.0.5-93.el6op
rubygem-thread-dump-debuginfo-0:0.0.5-93.el6op
rubygems-0:1.8.24-6.el6op
rubygems-devel-0:1.8.24-6.el6op
shapelib-0:1.3.0b2-10.2.el6op
shapelib-debuginfo-0:1.3.0b2-10.2.el6op
shapelib-devel-0:1.3.0b2-10.2.el6op
socat-0:1.7.2.2-1.el6op
socat-debuginfo-0:1.7.2.2-1.el6op
ta-lib-0:0.4.0-1.el6op
ta-lib-debuginfo-0:0.4.0-1.el6op
ta-lib-devel-0:0.4.0-1.el6op
uuid-debuginfo-0:1.6.1-10.el6
uuid-devel-0:1.6.1-10.el6
uuid-pgsql-0:1.6.1-10.el6
v8-1:3.14.5.10-2.el6op
v8-debuginfo-1:3.14.5.10-2.el6op
v8-devel-1:3.14.5.10-2.el6op
xerces-c-0:3.0.1-20.el6
xerces-c-debuginfo-0:3.0.1-20.el6
xerces-c-devel-0:3.0.1-20.el6
xerces-c-doc-0:3.0.1-20.el6
yum-plugin-priorities-0:1.1.30-17.el6_5

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Nessus

Redhat

References