CVE-2013-0196

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 05-09-2014 02:00

Last modified: - 05-09-2014 02:00

Total changes: - 10

Description

CVE-2013-0196 OpenShift Enterprise and Online vulnerable to CSRF attack with REST API

Common Vulnerability Scoring System (CVSS)

AV:N/AC:M/Au:N/C:N/I:P/A:N

Low

Attack complexity

Network

Attack vector

None

Availability

None

Confidentiality

Low

Integrity

-

Privileges required

-

Scope

-

User interaction

4.3

Base score

Exploitability score

Impact score

Verification logic

OR

AND

product=activemq-0 AND versionEndExcluding=5.6.0-5.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=libev-0 AND versionEndExcluding=4.04-4.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=mcollective-0 AND versionEndExcluding=2.2.1-4.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=mongodb-0 AND versionEndExcluding=2.2.3-2.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=numpy-0 AND versionEndExcluding=1.4.1-9.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=openshift-enterprise-upgrade-0 AND versionEndExcluding=1.2.0-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=openshift-origin-broker-0 AND versionEndExcluding=1.5.2-1.1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=openshift-origin-broker-util-0 AND versionEndExcluding=1.9.7-1.2.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=openshift-origin-console-0 AND versionEndExcluding=1.5.19-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=openshift-origin-msg-common-0 AND versionEndExcluding=1.7.2-1.1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=openshift-origin-util-scl-0 AND versionEndExcluding=1.4.1-1.1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-0 AND versionEndExcluding=1-8.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-libyaml-0 AND versionEndExcluding=0.1.4-4.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-ruby-0 AND versionEndExcluding=1.9.3.429-34.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-actionmailer-1 AND versionEndExcluding=3.2.8-1.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-actionpack-1 AND versionEndExcluding=3.2.8-5.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-activemodel-0 AND versionEndExcluding=3.2.8-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-activerecord-1 AND versionEndExcluding=3.2.8-6.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-activeresource-1 AND versionEndExcluding=3.2.8-1.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-activesupport-1 AND versionEndExcluding=3.2.8-4.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-arel-0 AND versionEndExcluding=3.0.2-3.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-bson-0 AND versionEndExcluding=1.8.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-bson_ext-0 AND versionEndExcluding=1.8.1-2.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-builder-0 AND versionEndExcluding=3.0.0-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-bundler-0 AND versionEndExcluding=1.1.4-3.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-chunky_png-0 AND versionEndExcluding=1.2.6-3.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-coffee-rails-0 AND versionEndExcluding=3.2.2-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-coffee-script-0 AND versionEndExcluding=2.2.0-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-coffee-script-source-0 AND versionEndExcluding=1.3.3-3.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-compass-0 AND versionEndExcluding=0.12.2-4.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-compass-rails-0 AND versionEndExcluding=1.0.3-2.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-diff-lcs-0 AND versionEndExcluding=1.1.3-1.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-dnsruby-0 AND versionEndExcluding=1.53-3.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-erubis-0 AND versionEndExcluding=2.7.0-4.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-execjs-0 AND versionEndExcluding=1.4.0-4.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-file-tail-0 AND versionEndExcluding=1.0.5-5.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-formtastic-0 AND versionEndExcluding=1.2.4-2.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-fssm-0 AND versionEndExcluding=0.2.8.1-2.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-haml-0 AND versionEndExcluding=3.1.7-3.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-hike-0 AND versionEndExcluding=1.2.1-3.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-i18n-0 AND versionEndExcluding=0.6.0-3.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-journey-0 AND versionEndExcluding=1.0.4-1.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-jquery-rails-0 AND versionEndExcluding=2.0.2-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-mail-0 AND versionEndExcluding=2.4.4-3.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-mime-types-0 AND versionEndExcluding=1.19-1.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-minitest-0 AND versionEndExcluding=3.5.0-3.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-mongo-0 AND versionEndExcluding=1.8.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-mongoid-0 AND versionEndExcluding=3.0.21-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-moped-0 AND versionEndExcluding=1.3.2-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-multi_json-0 AND versionEndExcluding=1.3.6-1.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-net-http-persistent-0 AND versionEndExcluding=2.7-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-open4-0 AND versionEndExcluding=1.3.0-3.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-origin-0 AND versionEndExcluding=1.0.7-2.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-parseconfig-0 AND versionEndExcluding=1.0.2-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-passenger-0 AND versionEndExcluding=3.0.17-11.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-polyglot-0 AND versionEndExcluding=0.3.3-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-rack-1 AND versionEndExcluding=1.4.1-5.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-rack-cache-0 AND versionEndExcluding=1.2-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-rack-protection-0 AND versionEndExcluding=1.2.0-7.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-rack-ssl-0 AND versionEndExcluding=1.3.2-7.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-rack-test-0 AND versionEndExcluding=0.6.1-3.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-rails-1 AND versionEndExcluding=3.2.8-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-railties-0 AND versionEndExcluding=3.2.8-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-rdiscount-0 AND versionEndExcluding=1.6.8-3.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-ref-0 AND versionEndExcluding=1.0.0-3.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-regin-0 AND versionEndExcluding=0.3.7-4.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-rest-client-0 AND versionEndExcluding=1.6.1-2.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-safe_yaml-0 AND versionEndExcluding=0.9.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-sass-0 AND versionEndExcluding=3.1.20-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-sass-rails-0 AND versionEndExcluding=3.2.5-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-sexp_processor-0 AND versionEndExcluding=3.2.0-2.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-sprockets-0 AND versionEndExcluding=2.4.5-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-spruz-0 AND versionEndExcluding=0.2.5-5.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-state_machine-0 AND versionEndExcluding=1.1.2-7.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-stomp-0 AND versionEndExcluding=1.1.8-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-systemu-0 AND versionEndExcluding=2.5.2-2.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-therubyracer-0 AND versionEndExcluding=0.11.0-0.5.beta5.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-thor-0 AND versionEndExcluding=0.15.4-1.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-tilt-0 AND versionEndExcluding=1.3.3-8.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-treetop-0 AND versionEndExcluding=1.4.10-6.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-tzinfo-0 AND versionEndExcluding=0.3.33-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-uglifier-0 AND versionEndExcluding=1.2.6-2.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-rubygem-xml-simple-0 AND versionEndExcluding=1.0.12-10.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=ruby193-v8-1 AND versionEndExcluding=3.14.5.8-3.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=rubygem-openshift-origin-auth-remote-user-0 AND versionEndExcluding=1.8.1-1.1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=rubygem-openshift-origin-common-0 AND versionEndExcluding=1.8.11-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=rubygem-openshift-origin-console-0 AND versionEndExcluding=1.9.14-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=rubygem-openshift-origin-controller-0 AND versionEndExcluding=1.9.14-1.2.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=rubygem-openshift-origin-dns-nsupdate-0 AND versionEndExcluding=1.5.2-1.1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=rubygem-openshift-origin-msg-broker-mcollective-0 AND versionEndExcluding=1.9.9-1.1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=rubygems-0 AND versionEndExcluding=1.8.16-2.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

AND

product=yum-utils-0 AND versionEndExcluding=1.1.30-14.el6

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1.2

Reference

Keywords

REDHAT

CVE-2013-0196

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.