Vulnerabilities > Redhat > Openshift > Low

DATE CVE VULNERABILITY TITLE RISK
2022-10-17 CVE-2017-7517 Unspecified vulnerability in Redhat Openshift 3.0
An input validation vulnerability exists in Openshift Enterprise due to a 1:1 mapping of tenants in Hawkular Metrics and projects/namespaces in OpenShift.
network
low complexity
redhat
3.5
2018-08-01 CVE-2016-8651 Unspecified vulnerability in Redhat Openshift and Openshift Container Platform
An input validation flaw was found in the way OpenShift 3 handles requests for images.
low complexity
redhat
3.5
2017-09-26 CVE-2015-0238 Information Exposure vulnerability in Redhat Openshift 2.0
selinux-policy as packaged in Red Hat OpenShift 2 allows attackers to obtain process listing information via a privilege escalation attack.
local
low complexity
redhat CWE-200
3.3
2017-08-07 CVE-2015-7561 Permissions, Privileges, and Access Controls vulnerability in multiple products
Kubernetes in OpenShift3 allows remote authenticated users to use the private images of other users should they know the name of said image.
network
high complexity
kubernetes redhat CWE-264
3.1
2016-06-08 CVE-2016-3711 Information Exposure vulnerability in Redhat Openshift and Openshift Origin
HAproxy in Red Hat OpenShift Enterprise 3.2 and OpenShift Origin allows local users to obtain the internal IP address of a pod by reading the "OPENSHIFT_[namespace]_SERVERID" cookie.
local
low complexity
redhat CWE-200
3.3