Vulnerability Details CVE-2015-8945
openshift-node in OpenShift Origin 1.1.6 and earlier improperly stores router credentials as envvars in the pod when the --credentials option is used, which allows local users to obtain sensitive private key information by reading the systemd journal.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.3%
CVSS Severity
CVSS v3 Score 5.1
CVSS v2 Score 1.9
References
- http://www.openwall.com/lists/oss-security/2016/07/13/10
- http://www.openwall.com/lists/oss-security/2016/07/13/9
- http://www.securityfocus.com/bid/91776
- https://github.com/openshift/origin/issues/3951
- http://www.openwall.com/lists/oss-security/2016/07/13/10
- http://www.openwall.com/lists/oss-security/2016/07/13/9
- http://www.securityfocus.com/bid/91776
- https://github.com/openshift/origin/issues/3951
Products affected by CVE-2015-8945
-
cpe:2.3:a:openshift:origin:1.0.0
-
cpe:2.3:a:openshift:origin:1.0.1
-
cpe:2.3:a:openshift:origin:1.0.2
-
cpe:2.3:a:openshift:origin:1.0.3
-
cpe:2.3:a:openshift:origin:1.0.4
-
cpe:2.3:a:openshift:origin:1.0.5
-
cpe:2.3:a:openshift:origin:1.0.6
-
cpe:2.3:a:openshift:origin:1.0.7
-
cpe:2.3:a:openshift:origin:1.0.8
-
cpe:2.3:a:openshift:origin:1.1
-
cpe:2.3:a:openshift:origin:1.1.0.1
-
cpe:2.3:a:openshift:origin:1.1.1
-
cpe:2.3:a:openshift:origin:1.1.1.1
-
cpe:2.3:a:openshift:origin:1.1.2
-
cpe:2.3:a:openshift:origin:1.1.3
-
cpe:2.3:a:openshift:origin:1.1.4
-
cpe:2.3:a:openshift:origin:1.1.5
-
cpe:2.3:a:openshift:origin:1.1.6