CVE-2017-12195

A flaw was found in all Openshift Enterprise versions using the openshift elasticsearch plugin. An attacker with knowledge of the given name used to authenticate and access Elasticsearch can later access it without the token, bypassing authentication. This attack also requires that the Elasticsearch be configured with an external route, and the data accessed is limited to the indices.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
redhatCNA
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 43%
VendorProductVersion
redhatopenshift_container_platform
3.4
redhatopenshift_container_platform
3.5
redhatopenshift_container_platform
3.6
redhatopenshift_container_platform
3.7
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://access.redhat.com/errata/RHSA-2017:3188
https://access.redhat.com/errata/RHSA-2017:3389
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12195
https://access.redhat.com/errata/RHSA-2017:3188
https://access.redhat.com/errata/RHSA-2017:3389
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12195