Openshift Enterprise source-to-image before version 1.1.10 is vulnerable to an improper validation of user input. An attacker who could trick a user into using the command to copy files locally, from a pod, could override files outside of the target directory of the command.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1103 | Issue Tracking |
Configurations
Information
Published : 2018-06-12 08:29
Updated : 2019-10-09 16:38
NVD link : CVE-2018-1103
Mitre link : CVE-2018-1103
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
redhat
- source-to-image