N/A

An input validation vulnerability exists in Openshift Enterprise due to a 1:1 mapping of tenants in Hawkular Metrics and projects/namespaces in OpenShift. If a user creates a project called "MyProject", and then later deletes it another user can then create a project called "MyProject" and access the metrics stored from the original "MyProject" instance.

N/A

输入验证不恰当

Red Hat OpenShift 输入验证错误漏洞

Red Hat OpenShift是美国红帽（Red Hat）公司的一款平台即服务（PaaS）云计算平台，它支持构建、测试、部署和运行应用程序。 Redhat Openshift Enterprise存在输入验证错误漏洞，该漏洞源于当用户创建了一个名为“MyProject”的项目，然后将其删除，则另一个用户可以创建一个名为“MyProject”的项目并访问从原始“MyProject”实例存储的指标。

N/A

N/A