Red Hat OpenShift Enterprise version 3.7 is vulnerable to access control override for container network filesystems. An attacker could override the UserId and GroupId for GlusterFS and NFS to read and write any data on the network filesystem.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/103364 | Third Party Advisory VDB Entry |
https://bugzilla.redhat.com/show_bug.cgi?id=1552987 | Issue Tracking Mitigation |
http://www.securityfocus.com/bid/103364 | Third Party Advisory VDB Entry |
https://bugzilla.redhat.com/show_bug.cgi?id=1552987 | Issue Tracking Mitigation |
Configurations
History
21 Nov 2024, 03:59
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.securityfocus.com/bid/103364 - Third Party Advisory, VDB Entry | |
References | () https://bugzilla.redhat.com/show_bug.cgi?id=1552987 - Issue Tracking, Mitigation |
Information
Published : 2018-03-09 14:29
Updated : 2024-11-21 03:59
NVD link : CVE-2018-1069
Mitre link : CVE-2018-1069
CVE.ORG link : CVE-2018-1069
JSON object : View
Products Affected
redhat
- openshift