The OpenShift Enterprise 3 router does not properly sort routes when processing newly added routes. An attacker with access to create routes can potentially overwrite existing routes and redirect network traffic for other users to their own site.
Jordan Liggitt of Red Hat reports:
The OpenShift Enterprise 3 router sometimes selects new routes over old routes
when determining claimed hostnames. This can result in a new route improperly
overwriting an older route.
Name: Jordan Liggitt (Red Hat)
This issue has been addressed in the following products:
Red Hat OpenShift Container Platform 3.3
Via RHSA-2016:2696 https://access.redhat.com/errata/RHSA-2016:2696