CVE-2016-3738 in OpenShift Enterpriseinfo

Summary

Red Hat OpenShift Enterprise 3.2 does not properly restrict access to STI builds, which allows remote authenticated users to access the Docker socket and gain privileges via vectors related to build-pod.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

03/30/2016

Disclosure

06/08/2016

Moderation

VulDB entry created

Entries

VDB-87793 (1)

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

8.8

EPSS

0.00671

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-3738
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-3738
CVE Details	https://www.cvedetails.com/cve/CVE-2016-3738/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!