Lucene search
K

Cloud Foundry UAA SCIM Elevation of Privilege Vulnerability

🗓️ 27 Sep 2019 00:00:00Reported by China National Vulnerability DatabaseType 
cnvd
 cnvd
🔗 www.cnvd.org.cn👁 4 Views

SCIM blind injection elevation in Cloud Foundry User Account and Authentication before 74.1.0; attacker with client write and groups update can override scope.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Cloud Foundry
CVE-2019-11278: Privilege Escalation via Blind SCIM Injection in UAA | Cloud Foundry
10 Sep 201900:00
cloudfoundry
CVE
CVE-2019-11278
26 Sep 201921:11
cve
Cvelist
CVE-2019-11278 Privilege Escalation via Blind SCIM Injection in UAA
26 Sep 201921:11
cvelist
EUVD
EUVD-2019-2966
7 Oct 202500:30
euvd
NVD
CVE-2019-11278
26 Sep 201921:15
nvd
OSV
CVE-2019-11278
26 Sep 201921:15
osv
Prion
Design/Logic Flaw
26 Sep 201921:15
prion
Veracode
Privilege Escalation
12 Sep 201908:18
veracode
Vulners

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Dec 2019 00:00Current
7.2High risk
Vulners AI Score7.2
CVSS 26.5
CVSS 3.18.8
CVSS 38.7
EPSS0.01342
4