CyberSec.Space Logo
Back to CVE Browser

CVE-2013-4253

HIGH
7.5
CVSS Severity Score
EPSS Score0.0540%
EPSS Percentile3.16th
PublishedOct 19, 2022
Last ModifiedMay 9, 2025

Vulnerability Description

The deployment script in the unsupported "OpenShift Extras" set of add-on scripts, in Red Hat Openshift 1, installs a default public key in the root user's authorized_keys file.

Affected Platforms (CPE)

πŸ“¦
Redhat

Openshift

= 1.0

References & Advisories

πŸ”— https://github.com/openshift/openshift-extras/blob/enterprise-2.0/README.md#security-notice
πŸ”— https://www.openwall.com/lists/oss-security/2014/06/05/19
πŸ”— https://github.com/openshift/openshift-extras/blob/enterprise-2.0/README.md#security-notice
πŸ”— https://www.openwall.com/lists/oss-security/2014/06/05/19

Related Vulnerabilities

CVE-2014-349610.0

cartridge_repository.rb in OpenShift Origin and Enterprise 1.2.8 through 2.1.1 allows remote attackers to execute arbitrary comman...

CVE-2013-20959.8

rubygem-openshift-origin-controller: API can be used to create applications via cartridge_cache.rb URI.prase() to perform command ...

CVE-2019-38999.8

It was found that default configuration of Heketi does not require any authentication potentially exposing the management interfac...

CVE-2013-20609.8

The download_from_url function in OpenShift Origin allows remote attackers to execute arbitrary commands via shell metacharacters ...