Information Disclosure Vulnerability in HAproxy in Red Hat OpenShift Enterprise 3.2 and OpenShift Origin

Information Disclosure Vulnerability in HAproxy in Red Hat OpenShift Enterprise 3.2 and OpenShift Origin

CVE-2016-3711 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

HAproxy in Red Hat OpenShift Enterprise 3.2 and OpenShift Origin allows local users to obtain the internal IP address of a pod by reading the "OPENSHIFT_[namespace]_SERVERID" cookie.

Learn more about our Cis Benchmark Audit For Server Software.