CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2013-4253

HIGH
7.5
CVSS Severity Score
EPSS Score0.0540%
EPSS Percentile3.16th
Published2022年10月19日
Last Modified2025年5月9日

Vulnerability Description

The deployment script in the unsupported "OpenShift Extras" set of add-on scripts, in Red Hat Openshift 1, installs a default public key in the root user's authorized_keys file.

Affected Platforms (CPE)

📦
Redhat

Openshift

= 1.0

References & Advisories

🔗 https://github.com/openshift/openshift-extras/blob/enterprise-2.0/README.md#security-notice
🔗 https://www.openwall.com/lists/oss-security/2014/06/05/19
🔗 https://github.com/openshift/openshift-extras/blob/enterprise-2.0/README.md#security-notice
🔗 https://www.openwall.com/lists/oss-security/2014/06/05/19

相關漏洞威脅

CVE-2014-349610.0

cartridge_repository.rb in OpenShift Origin and Enterprise 1.2.8 through 2.1.1 allows remote attackers to execute arbitrary comman...

CVE-2013-20959.8

rubygem-openshift-origin-controller: API can be used to create applications via cartridge_cache.rb URI.prase() to perform command ...

CVE-2019-38999.8

It was found that default configuration of Heketi does not require any authentication potentially exposing the management interfac...

CVE-2013-20609.8

The download_from_url function in OpenShift Origin allows remote attackers to execute arbitrary commands via shell metacharacters ...