CVEブラウザに戻る

CVE-2014-3496

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0560%

EPSS Percentile40.78th

Published2014年6月20日

Last Modified2026年5月6日

Vulnerability Description

cartridge_repository.rb in OpenShift Origin and Enterprise 1.2.8 through 2.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a Source-Url ending with a (1) .tar.gz, (2) .zip, (3) .tgz, or (4) .tar file extension in a cartridge manifest file.

Affected Platforms (CPE)

📦

Redhat

Openshift

= 1.2.8

📦

Redhat

Openshift

= 2.0

📦

Redhat

Openshift

= 2.0.1

📦

Redhat

Openshift

= 2.0.2

📦

Redhat

Openshift

= 2.0.3

📦

Redhat

Openshift

= 2.0.4

📦

Redhat

Openshift

= 2.0.5

📦

Redhat

Openshift

= 2.0.6

📦

Redhat

Openshift

= 2.1

📦

Redhat

Openshift

= 2.1.1

📦

Redhat

Openshift Origin

= 1.2.8

📦

Redhat

Openshift Origin

= 2.1

📦

Redhat

Openshift Origin

= 2.1.1

References & Advisories

🔗 http://rhn.redhat.com/errata/RHSA-2014-0762.html

🔗 http://rhn.redhat.com/errata/RHSA-2014-0763.html

🔗 http://rhn.redhat.com/errata/RHSA-2014-0764.html

🔗 http://secunia.com/advisories/59298

🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1110470

🔗 https://github.com/openshift/origin-server/pull/5521

🔗 http://rhn.redhat.com/errata/RHSA-2014-0762.html

🔗 http://rhn.redhat.com/errata/RHSA-2014-0763.html

関連する脆弱性情報

CVE-2013-20609.8

The download_from_url function in OpenShift Origin allows remote attackers to execute arbitrary commands via shell metacharacters ...

CVE-2013-20959.8

rubygem-openshift-origin-controller: API can be used to create applications via cartridge_cache.rb URI.prase() to perform command ...

CVE-2019-38999.8

It was found that default configuration of Heketi does not require any authentication potentially exposing the management interfac...

CVE-2014-02349.8

The default configuration of broker.conf in Red Hat OpenShift Enterprise 2.x before 2.1 has a password of "mooo" for a Mongo accou...