CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-1103
https://notcve.org/view.php?id=CVE-2018-1103
12 Jun 2018 — Openshift Enterprise source-to-image before version 1.1.10 is vulnerable to an improper validation of user input. An attacker who could trick a user into using the command to copy files locally, from a pod, could override files outside of the target directory of the command. Openshift Enterprise source-to-image en versiones anteriores a la 1.1.10 es vulnerable a una validación incorrecta de entradas de usuario. Un atacante que pueda engañar a un usuario para que emplee el comando para copiar archivos localm... • https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1103 • CWE-20: Improper Input Validation CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •