CVE-2017-12195
Last modified
CVE-2017-12195 is a vulnerability of currently unknown severity. A flaw was found in all Openshift Enterprise versions using the openshift elasticsearch plugin. An attacker with knowledge of the given name used to authenticate and access Elasticsearch can later access it without the token, bypassing authentication. EPSS estimates a 1.39% chance of exploitation in the next 30 days.
Description
A flaw was found in all Openshift Enterprise versions using the openshift elasticsearch plugin. An attacker with knowledge of the given name used to authenticate and access Elasticsearch can later access it without the token, bypassing authentication. This attack also requires that the Elasticsearch be configured with an external route, and the data accessed is limited to the indices.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Redhat | Openshift Container Platform | 3.4 |
| Redhat | Openshift Container Platform | 3.5 |
| Redhat | Openshift Container Platform | 3.6 |
| Redhat | Openshift Container Platform | 3.7 |
References
- https://access.redhat.com/errata/RHSA-2017:3188Third Party Advisory
- https://access.redhat.com/errata/RHSA-2017:3389Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12195Issue Tracking, Third Party Advisory
- https://access.redhat.com/errata/RHSA-2017:3188Third Party Advisory
- https://access.redhat.com/errata/RHSA-2017:3389Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12195Issue Tracking, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-12195?
How severe is CVE-2017-12195?
How do I fix CVE-2017-12195?
Are you affected by CVE-2017-12195?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST