Jechoi

**Name of the Vulnerable Software and Affected Versions** rubygem-openshift-origin-controller versions (affected versions not specified) **Description** The issue allows the API to be used for creating applications via cartridge cache.rb, where the `URI.prase()` function can be exploited to perform command injection. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** OpenShift (affected versions not specified) **Description** The issue concerns a problem where the OpenShift cartridge allows remote URL retrieval. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.