{"containers": {"cna": {"affected": [{"product": "OpenShift cartridge", "vendor": "OpenShift cartridge", "versions": [{"status": "affected", "version": "through 2013-05-17"}]}], "descriptions": [{"lang": "en", "value": "OpenShift cartridge allows remote URL retrieval"}], "problemTypes": [{"descriptions": [{"description": "remote URL retrieval", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-12-03T13:11:05", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-2103"}, {"tags": ["x_refsource_MISC"], "url": "https://access.redhat.com/security/cve/cve-2013-2103"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T15:27:40.659Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-2103"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://access.redhat.com/security/cve/cve-2013-2103"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2013-2103", "datePublished": "2019-12-03T13:11:05", "dateReserved": "2013-02-19T00:00:00", "dateUpdated": "2024-08-06T15:27:40.659Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:redhat:openshift:1.0:*:*:*:enterprise:*:*:*", "matchCriteriaId": "19D8D9FF-51A8-4A81-B855-DB480ABEA300", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "OpenShift cartridge allows remote URL retrieval"}, {"lang": "es", "value": "El cartucho de OpenShift permite la recuperaci\u00f3n remota de la URL."}], "id": "CVE-2013-2103", "lastModified": "2024-11-21T01:51:02.360", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 5.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-12-03T14:15:09.967", "references": [{"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/security/cve/cve-2013-2103"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-2103"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/security/cve/cve-2013-2103"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-2103"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "cartridge: remote URL retrieval", "id": "964013", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=964013"}, "csaw": false, "cvss": {"cvss_base_score": "5.5", "cvss_scoring_vector": "AV:N/AC:L/Au:S/C:P/I:N/A:P", "status": "draft"}, "details": ["OpenShift cartridge allows remote URL retrieval"], "name": "CVE-2013-2103", "package_state": [{"cpe": "cpe:/a:redhat:openshift:1", "fix_state": "Affected", "package_name": "rubygem-openshift-origin-controller", "product_name": "OpenShift Enterprise 1"}], "public_date": "2015-07-23T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2013-2103\nhttps://nvd.nist.gov/vuln/detail/CVE-2013-2103"], "statement": "Red Hat OpenShift Enterprise 1.2 is now in Production 1 Phase of the support\nand maintenance life cycle. This has been rated as having Moderate security\nimpact and is not currently planned to be addressed in future updates. For\nadditional information, refer to the Red Hat OpenShift Enterprise Life Cycle:\nhttps://access.redhat.com/site/support/policy/updates/openshift.", "threat_severity": "Moderate"}