CVE-2016-3708 in OpenShift Enterpriseinfo

Summary

Red Hat OpenShift Enterprise 3.2, when multi-tenant SDN is enabled and a build is run in a namespace that would normally be isolated from pods in other namespaces, allows remote authenticated users to access network resources on restricted pods via an s2i build with a builder image that (1) contains ONBUILD commands or (2) does not contain a tar binary.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

03/30/2016

Disclosure

06/08/2016

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-284 (Confirmed)

CVSS

8.0

EPSS

0.00132

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-3708
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-3708
CVE Details	https://www.cvedetails.com/cve/CVE-2016-3708/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!