CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-0164

openshift-origin-broker-util, as used in Red Hat OpenShift Enterprise 1.2.7 and 2.0.5, uses world-readable permissions for the mcollective client.cfg configuration file, which allows local users to obtain credentials and other sensitive information by reading the file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 9.8%

CVSS Severity

CVSS v2 Score 2.1

References

http://rhn.redhat.com/errata/RHSA-2014-0460.html
http://rhn.redhat.com/errata/RHSA-2014-0461.html
http://rhn.redhat.com/errata/RHSA-2014-0460.html
http://rhn.redhat.com/errata/RHSA-2014-0461.html

Products affected by CVE-2014-0164

Redhat » Openshift » Version: 1.2.7

cpe:2.3:a:redhat:openshift:1.2.7
Redhat » Openshift » Version: 2.0.5

cpe:2.3:a:redhat:openshift:2.0.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-0164

Products

Pricing

Contact Us