Vulnerabilities (CVE)

Filtered by vendor Openshift Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-8945 1 Openshift 1 Origin 2024-11-21 1.9 LOW 5.1 MEDIUM
openshift-node in OpenShift Origin 1.1.6 and earlier improperly stores router credentials as envvars in the pod when the --credentials option is used, which allows local users to obtain sensitive private key information by reading the systemd journal.
CVE-2015-3207 1 Openshift 1 Origin 2024-11-21 5.0 MEDIUM 5.3 MEDIUM
In Openshift Origin 3 the cookies being set in console have no 'secure', 'HttpOnly' attributes.