exploitDog

CVE-2015-5222

Опубликовано: 24 авг. 2015

Источник: nvd

CVSS2: 8.5

EPSS Низкий

Описание

Red Hat OpenShift Enterprise 3.0.0.0 does not properly check permissions, which allows remote authenticated users with build permissions to execute arbitrary shell commands with root permissions on arbitrary build pods via unspecified vectors.

Ссылки

https://access.redhat.com/errata/RHSA-2015:1650
Vendor Advisory
https://access.redhat.com/errata/RHSA-2015:1650
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:redhat:openshift:3.0.0.0:*:*:*:enterprise:*:*:*

EPSS

Процентиль: 64%

0.00471

Низкий

8.5 High

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2015-5222

redhat

больше 10 лет назад

Red Hat OpenShift Enterprise 3.0.0.0 does not properly check permissions, which allows remote authenticated users with build permissions to execute arbitrary shell commands with root permissions on arbitrary build pods via unspecified vectors.

GHSA-x7xw-w98q-fgfm

github

больше 3 лет назад

Red Hat OpenShift Enterprise 3.0.0.0 does not properly check permissions, which allows remote authenticated users with build permissions to execute arbitrary shell commands with root permissions on arbitrary build pods via unspecified vectors.

EPSS

Процентиль: 64%

0.00471

Низкий

8.5 High

CVSS2

Дефекты

CWE-264