The default configuration of broker.conf in Red Hat OpenShift Enterprise 2.x prior to 2.1 has a password of "mooo" for a Mongo account, which allows remote malicious users to hijack the broker by providing this password, related to the openshift.sh script in Openshift Extras prior to 20130920. NOTE: this may overlap CVE-2013-4253 and CVE-2013-4281.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat openshift |