Authentication bypass in Red Hat OpenShift Container Platform
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2016-7075 |
| CWE-ID | CWE-20 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
Red Hat OpenShift Container Platform Client/Desktop applications / Software for system administration |
| Vendor | Red Hat Inc. |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Authentication bypass
EUVDB-ID: #VU1017
Risk: Low
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2016-7075
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote unauthenticated user to bypass authentication on the target system.
The weakness is due to insufficient validation of X.509 client intermediate certificate hostname fields. By sending a specially crafted X.509 certificate to be processed, attackers can avoid authentication and access the system.
Succesful exploitation of the vulnerability may lead to further consequences or attacks.
Update to version 3.4.
Red Hat OpenShift Container Platform: 3.1 - 3.3
CPE2.3- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:3.3:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:3.1:*:*:*:*:*:*:*
http://access.redhat.com/security/cve/CVE-2016-7075
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
