CVE-2017-15138

Summary

The OpenShift Enterprise cluster-read can access webhook tokens which would allow an attacker with sufficient privileges to view confidential webhook tokens.

Affected Software

VendorProductVersion RangeStatus
[UNKNOWN]atomic-openshiftn/aaffected

Weaknesses

  • CWE-200: CWE-200

ADP Enrichment

CVE Program Container

Additional References

References