Monthly Archive: June 2016

HPE Insight Control server deployment allows remote attackers to obtain sensitive information via unspecified vectors. Date published : 2016-06-08 https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05150800

HPE Insight Control server deployment allows local users to gain privileges via unspecified vectors. Date published : 2016-06-08 https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05150800

HPE Insight Control server deployment allows remote attackers to modify data via unspecified vectors. Date published : 2016-06-08 https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05150800

HPE Insight Control server deployment allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors. Date published : 2016-06-08 https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05150800

HPE LoadRunner 11.52 through patch 3, 12.00 through patch 1, 12.01 through patch 3, 12.02 through patch 2, and 12.50 through patch 3 and Performance Center 11.52 through patch 3, 12.00 through patch 1,...

web/admin/data.js in the Performance Center Virtual Table Server (VTS) component in HPE LoadRunner 11.52 through patch 3, 12.00 through patch 1, 12.01 through patch 3, 12.02 through patch 2, and 12.50 through patch 3...

Stack-based buffer overflow in mchan.dll in the agent in HPE LoadRunner 11.52 through patch 3, 12.00 through patch 1, 12.01 through patch 3, 12.02 through patch 2, and 12.50 through patch 3 and Performance...

HPE Matrix Operating Environment before 7.5.1 allows remote attackers to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2029. Date published : 2016-06-08 https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888

HPE Matrix Operating Environment before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2028. Date published : 2016-06-08 https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888

Red Hat OpenShift Enterprise 3.2 does not properly restrict access to STI builds, which allows remote authenticated users to access the Docker socket and gain privileges via vectors related to build-pod. Date published :...

HAproxy in Red Hat OpenShift Enterprise 3.2 and OpenShift Origin allows local users to obtain the internal IP address of a pod by reading the "OPENSHIFT_[namespace]_SERVERID" cookie. Date published : 2016-06-08 https://github.com/openshift/origin/pull/8334 https://access.redhat.com/errata/RHSA-2016:1064

Red Hat OpenShift Enterprise 3.2, when multi-tenant SDN is enabled and a build is run in a namespace that would normally be isolated from pods in other namespaces, allows remote authenticated users to access...

Red Hat OpenShift Enterprise 3.2 and 3.1 do not properly validate the origin of a request when anonymous access is granted to a service/proxy or pod/proxy API for a specific pod, which allows remote...

Red Hat OpenShift Enterprise 3.2 and OpenShift Origin allow remote authenticated users to execute commands with root privileges by changing the root password in an sti builder image. Date published : 2016-06-08 https://bugzilla.redhat.com/show_bug.cgi?id=1316127 https://github.com/openshift/origin/pull/7864