vulnerability

Red Hat OpenShift: CVE-2016-8631: OSE 3: Router sometimes selects new routes over old routes when determining claimed hostnames

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:N/I:P/A:N)	Jun 18, 2018	Jun 18, 2018	Aug 11, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:N/I:P/A:N)

Published

Jun 18, 2018

Added

Jun 18, 2018

Modified

Aug 11, 2025

Description

The OpenShift Enterprise 3 router does not properly sort routes when processing newly added routes. An attacker with access to create routes can potentially overwrite existing routes and redirect network traffic for other users to their own site.

Solution

linuxrpm-upgrade-atomic-openshift

References

CVE-2016-8631
https://attackerkb.com/topics/CVE-2016-8631
CWE-20
REDHAT-RHSA-2016:2696

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today