Описание
Ruby gem openshift-origin-node before 2014-02-14 does not contain a cronjob timeout which could result in a denial of service in cron.daily and cron.weekly.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| OpenShift Enterprise 1 | rubygem-openshift-origin-node | Will not fix | ||
| Red Hat OpenShift Enterprise 2.1 | activemq | Fixed | RHBA-2014:0487 | 14.05.2014 |
| Red Hat OpenShift Enterprise 2.1 | armadillo | Fixed | RHBA-2014:0487 | 14.05.2014 |
| Red Hat OpenShift Enterprise 2.1 | atlas | Fixed | RHBA-2014:0487 | 14.05.2014 |
| Red Hat OpenShift Enterprise 2.1 | cfitsio | Fixed | RHBA-2014:0487 | 14.05.2014 |
| Red Hat OpenShift Enterprise 2.1 | CharLS | Fixed | RHBA-2014:0487 | 14.05.2014 |
| Red Hat OpenShift Enterprise 2.1 | facter | Fixed | RHBA-2014:0487 | 14.05.2014 |
| Red Hat OpenShift Enterprise 2.1 | freexl | Fixed | RHBA-2014:0487 | 14.05.2014 |
| Red Hat OpenShift Enterprise 2.1 | gd | Fixed | RHBA-2014:0487 | 14.05.2014 |
| Red Hat OpenShift Enterprise 2.1 | gdal | Fixed | RHBA-2014:0487 | 14.05.2014 |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-400
https://bugzilla.redhat.com/show_bug.cgi?id=1065198rubygem-openshift-origin-node: cron.daily/cron.weekly denial of service
EPSS
Процентиль: 33%
0.00131
Низкий
2.1 Low
CVSS2
Связанные уязвимости
CVSS3: 5.5
nvd
около 6 лет назад
Ruby gem openshift-origin-node before 2014-02-14 does not contain a cronjob timeout which could result in a denial of service in cron.daily and cron.weekly.
CVSS3: 5.5
github
больше 3 лет назад
openshift-origin-node Improper Input Validation vulnerability
EPSS
Процентиль: 33%
0.00131
Низкий
2.1 Low
CVSS2