### [CVE-2013-4561](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4561)
![](https://img.shields.io/static/v1?label=Product&message=openshift-origin-msg-node-mcollective&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20openshift-origin-msg-node-mcollective%20%20as%20shipped%20with%20Red%20Hat%20OpenShift%20Online%20and%20OpenShift%20Enterprise%201.x.%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-377&color=brighgreen)

### Description

In a openshift node, there is a cron job to update mcollective facts that mishandles a temporary file. This may lead to loss of confidentiality and integrity.

### POC

#### Reference
- https://github.com/openshift/origin-server/commit/f1abe972794e35a4bfba597694ce829990f14d39
- https://github.com/openshift/origin-server/commit/f1abe972794e35a4bfba597694ce829990f14d39

#### Github
No PoCs found on GitHub currently.