Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-8631

Опубликовано: 01 нояб. 2016
Источник: redhat
CVSS3: 6.3
CVSS2: 6
EPSS Низкий

Описание

The OpenShift Enterprise 3 router does not properly sort routes when processing newly added routes. An attacker with access to create routes can potentially overwrite existing routes and redirect network traffic for other users to their own site.

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-20
https://bugzilla.redhat.com/show_bug.cgi?id=13907353: Router sometimes selects new routes over old routes when determining claimed hostnames

EPSS

Процентиль: 41%
0.00191
Низкий

6.3 Medium

CVSS3

6 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2016-8631

CVSS3: 6.3
nvd
больше 7 лет назад

The OpenShift Enterprise 3 router does not properly sort routes when processing newly added routes. An attacker with access to create routes can potentially overwrite existing routes and redirect network traffic for other users to their own site.

github логотип

GHSA-973m-857j-grqw

CVSS3: 7.7
github
больше 3 лет назад

The OpenShift Enterprise 3 router does not properly sort routes when processing newly added routes. An attacker with access to create routes can potentially overwrite existing routes and redirect network traffic for other users to their own site.

EPSS

Процентиль: 41%
0.00191
Низкий

6.3 Medium

CVSS3

6 Medium

CVSS2