CyberSec.Space Logo
Back to CVE Browser

CVE-2014-0023

HIGH
7.8
CVSS Severity Score
EPSS Score0.1980%
EPSS Percentile25.08th
PublishedNov 15, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

OpenShift: Install script has temporary file creation vulnerability which can result in arbitrary code execution

Affected Platforms (CPE)

πŸ“¦
Redhat

Openshift

All versions

References & Advisories

πŸ”— https://access.redhat.com/security/cve/cve-2014-0023
πŸ”— https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0023
πŸ”— https://access.redhat.com/security/cve/cve-2014-0023
πŸ”— https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0023

Related Vulnerabilities

CVE-2014-349610.0

cartridge_repository.rb in OpenShift Origin and Enterprise 1.2.8 through 2.1.1 allows remote attackers to execute arbitrary comman...

CVE-2013-20959.8

rubygem-openshift-origin-controller: API can be used to create applications via cartridge_cache.rb URI.prase() to perform command ...

CVE-2019-38999.8

It was found that default configuration of Heketi does not require any authentication potentially exposing the management interfac...

CVE-2013-20609.8

The download_from_url function in OpenShift Origin allows remote attackers to execute arbitrary commands via shell metacharacters ...