CVE-2019-3884 in atomic-openshift情報

要約

〜によって MITRE

A vulnerability exists in the garbage collection mechanism of atomic-openshift. An attacker able spoof the UUID of a valid object from another namespace is able to delete children of those objects. Versions 3.6, 3.7, 3.8, 3.9, 3.10, 3.11 and 4.1 are affected.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

責任者

Red Hat, Inc.

予約する

2019年01月03日

モデレーション

承諾済み

エントリ

VDB-139277

CPE

準備完了

CWE

CWE-287 (確認済み)

CVSS

5.4 (NVD)

EPSS

0.00111

KEV

いいえ

アクティビティ

非常低い

セクター

Finance, Police, ...

ソース

MITRE	https://www.cve.org/CVERecord?id=CVE-2019-3884
NVD	https://nvd.nist.gov/vuln/detail/CVE-2019-3884
CVE Details	https://www.cvedetails.com/cve/CVE-2019-3884/

◂ 前概要次 ▸

Want to know what is going to be exploited?

We predict KEV entries!