CVE-2017-12195

medium

Description

A flaw was found in all Openshift Enterprise versions using the openshift elasticsearch plugin. An attacker with knowledge of the given name used to authenticate and access Elasticsearch can later access it without the token, bypassing authentication. This attack also requires that the Elasticsearch be configured with an external route, and the data accessed is limited to the indices.

References

Advisories

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12195

https://access.redhat.com/errata/RHSA-2017:3389

https://access.redhat.com/errata/RHSA-2017:3188

Details

Source: Mitre, NVD

Published: 2018-07-27

Updated: 2023-02-12

Risk Information

CVSS v2

Base Score: 5.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 4.8

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Severity: Medium

EPSS

EPSS: 0.0021