Red Hat OpenShift Enterprise version 3.7 is vulnerable to access control override for container network filesystems. An attacker could override the UserId and GroupId for GlusterFS and NFS to read and write any data on the network filesystem.
https://bugzilla.redhat.com/show_bug.cgi?id=1552987
http://www.securityfocus.com/bid/103364
Source: Mitre, NVD
Published: 2018-03-09
Updated: 2026-06-17
Base Score: 5.4
Vector: CVSS2#AV:A/AC:M/Au:N/C:P/I:P/A:P
Severity: Medium
Base Score: 7.1
Vector: CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: High
EPSS: 0.00092