CVE-2015-5222

Published: Aug 24, 2015Modified: May 6, 2026

8.5

Vector

AV:N/AC:M/Au:S/C:C/I:C/A:C

Exploitability: 6.8 / Impact: 10.0

Source: NVD

Description

Red Hat OpenShift Enterprise 3.0.0.0 does not properly check permissions, which allows remote authenticated users with build permissions to execute arbitrary shell commands with root permissions on arbitrary build pods via unspecified vectors.

Affected (1)

Products: Redhat: Openshift

Redhat

1 product

Openshift

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Redhat Openshift	Version 3.0.0.0

Related CWEs

CWE-264

References (2)

https://access.redhat.com/errata/RHSA-2015:1650

Source: secalert@redhat.com

Vendor Advisory

https://access.redhat.com/errata/RHSA-2015:1650

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.