CVE-2016-3711 — Vulnetix

Try Vulnetix Request Demo

CVE-2016-3711 PUBLISHED CVSS 3.299999952316284 LOW

HAproxy in Red Hat OpenShift Enterprise 3.2 and OpenShift Origin allows local users to obtain the internal IP address of a pod by reading the "OPENSHIFT_[namespace]_SERVERID" cookie.

EPSS 0.05% · 14.9th percentile

Risk Scores

CVSS v3.0

3.299999952316284

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

EPSS Score

0.05%

14.9th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
redhat	openshift_origin
redhat	openshift	3.2

Timeline

Jun 8, 2016 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

RHSA-2016:1064 vendor-advisory
https://github.com/openshift/origin/pull/8334 url

Open in Interactive Console →