Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2016-9592

openshift before versions 3.3.1.11, 3.2.1.23, 3.4 is vulnerable to a flaw when a volume fails to detach, which causes the delete operation to fail with 'VolumeInUse' error. Since the delete operation is retried every 30 seconds for each volume, this could lead to a denial of service attack as the number of API requests being sent to the cloud-provider exceeds the API's rate-limit.

  • Published: Apr 16, 2018
  • Updated: Apr 13, 2023
  • CVE: CVE-2016-9592
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

CVSS v2:

  • Severity: Low
  • Score: 4
  • AV:N/AC:L/Au:S/C:N/I:N/A:P

CWEs:

Software From Fixed in
redhat / openshift 3.4 3.4.x
redhat / openshift 3.3.1.11 3.3.1.11.x
redhat / openshift 3.2.1.23 3.2.1.23.x