CVE-2016-3711

low

Published 2016-06-08 · Modified 2026-05-06

CVSS v3

3.3

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CVSS v2

2.1

VIR risk

3.3

Description

HAproxy in Red Hat OpenShift Enterprise 3.2 and OpenShift Origin allows local users to obtain the internal IP address of a pod by reading the "OPENSHIFT_[namespace]_SERVERID" cookie.

Predictions

Exploit likelihood

34%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — https://github.com/openshift/origin/pull/8334

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — https://access.redhat.com/errata/RHSA-2016:1064

vendor Authored 2026-05-27

Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2016-3711.html

OS impact

OS	Version	Status	Fixed in
sles		affected

Application impact

Vendor	Product	Versions	Fixed
redhat	openshift	`3.2`
redhat	openshift_origin	`-`

References

https://www.suse.com/security/cve/CVE-2016-3711.html
https://access.redhat.com/errata/RHSA-2016:1064
https://github.com/openshift/origin/pull/8334

CWEs

CWE-200

Verify integrity in audit chain (admin only). AS-IS.