High
Cloud Foundry Foundation
In certain cases an authenticated Director user can provide a malicious checksum that could allow them to escalate their privileges on the Director VM.
OSS users are strongly encouraged to follow one of the mitigations below:
This issue was responsibly reported by the BOSH Team.
2017-05-01: Initial vulnerability report published