Openshift Origin vulnerabilities
2 known vulnerabilities affecting openshift/origin.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2015-3207MEDIUMCVSS 5.3v3.0.02022-07-07
CVE-2015-3207 [MEDIUM] CWE-614 CVE-2015-3207: In Openshift Origin 3 the cookies being set in console have no 'secure', 'HttpOnly' attributes.
In Openshift Origin 3 the cookies being set in console have no 'secure', 'HttpOnly' attributes.
nvd
CVE-2015-8945MEDIUMCVSS 5.1≤ 1.1.62016-08-05
CVE-2015-8945 [MEDIUM] CWE-255 CVE-2015-8945: openshift-node in OpenShift Origin 1.1.6 and earlier improperly stores router credentials as envvars
openshift-node in OpenShift Origin 1.1.6 and earlier improperly stores router credentials as envvars in the pod when the --credentials option is used, which allows local users to obtain sensitive private key information by reading the systemd journal.
nvd