CVE-2014-0084

CWE-20Improper Input ValidationCWE-400Uncontrolled Resource Consumption6 documents6 sources
Severity
5.5MEDIUM
EPSS
0.1%
top 68.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Redhat Openshift OriginRubygem-openshift-origin-node Rubygem-openshift-origin-node
Timeline
PublishedNov 21
Latest updateMay 17

Description

Ruby gem openshift-origin-node before 2014-02-14 does not contain a cronjob timeout which could result in a denial of service in cron.daily and cron.weekly.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

RubyGemsopenshift-origin-node1.3.3
NVDredhat/openshift_origin< 2014-02-14

🔴Vulnerability Details

3
OSV
openshift-origin-node Improper Input Validation vulnerability2022-05-17
GHSA
openshift-origin-node Improper Input Validation vulnerability2022-05-17
CVEList
CVE-2014-0084: Ruby gem openshift-origin-node before 2014-02-14 does not contain a cronjob timeout which could result in a denial of service in cron2019-11-21

📋Vendor Advisories

1
Red Hat
rubygem-openshift-origin-node: cron.daily/cron.weekly denial of service2014-02-14

💬Community

1
Bugzilla
CVE-2014-0084 rubygem-openshift-origin-node: cron.daily/cron.weekly denial of service2014-02-14