Red Hat OpenShift Enterprise 3.2, when multi-tenant SDN is enabled and a build is run in a namespace that would normally be isolated from pods in other namespaces, allows remote authenticated users to access network resources on restricted pods via an s2i build with a builder image that (1) contains ONBUILD commands or (2) does not contain a tar binary.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2016-06-08T17:00:00

Updated: 2024-08-06T00:03:34.544Z

Reserved: 2016-03-30T00:00:00

Link: CVE-2016-3708

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2016-06-08T17:59:05.750

Modified: 2024-11-21T02:50:32.740

Link: CVE-2016-3708

cve-icon Redhat

Severity : Moderate

Publid Date: 2016-04-27T00:00:00Z

Links: CVE-2016-3708 - Bugzilla