CVE-2017-12195
MEDIUMOpenshift Container Platform - Authentication Bypass via Elasticsearch Plugin
Title source: llmDescription
A flaw was found in all Openshift Enterprise versions using the openshift elasticsearch plugin. An attacker with knowledge of the given name used to authenticate and access Elasticsearch can later access it without the token, bypassing authentication. This attack also requires that the Elasticsearch be configured with an external route, and the data accessed is limited to the indices.
References (3)
Core 3
Core References
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:3188
Issue Tracking, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12195
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:3389
Scores
CVSS v3
6.5
EPSS
0.0139
EPSS Percentile
68.7%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Details
CWE
CWE-287
CWE-295
Status
published
Products (4)
redhat/openshift_container_platform
3.4
redhat/openshift_container_platform
3.5
redhat/openshift_container_platform
3.6
redhat/openshift_container_platform
3.7
Published
Jul 27, 2018
Tracked Since
Feb 18, 2026