CVE-2016-1906

Critical

Openshift allows remote attackers to gain privileges by updating a build configuration that was created with an allowed type to a type that…

redhat·CWE-264·Published 2016-02-03

CVSS

9.8

EPSS

0.05

KEV

Exploits

cve.orgen

155 chars

Openshift allows remote attackers to gain privileges by updating a build configuration that was created with an allowed type to a type that is not allowed.

NVDen

155 chars

Openshift allows remote attackers to gain privileges by updating a build configuration that was created with an allowed type to a type that is not allowed.

OSV.deven

64 chars

Authorization bypass in Openshift in github.com/openshift/origin

GHSAen

155 chars

Openshift allows remote attackers to gain privileges by updating a build configuration that was created with an allowed type to a type that is not allowed.

NVDes

198 chars

Openshift, permite a los atacantes remotos alcanzar privilegios mediante la actualización de una configuración de compilación que fue diseñada con un tipo permitido en un tipo que no está permitido.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	10.0	10.0	10.0	AV:N/AC:L/Au:N/C:C/I:C/A:C
3.0	Primary	NVD	9.8	3.9	5.9	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H