Lucene search

[email protected]CVE-2015-1834

HistoryMay 25, 2017 - 5:29 p.m.

CVE-2015-1834

2017-05-2517:29:00

CWE-22

[email protected]

web.nvd.nist.gov

cve-2015-1834

cloud foundry

cloud controller

path traversal

security vulnerability

pivotal cloud foundry

elastic runtime

nvd

upload vulnerability

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

6.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.4%

JSON

A path traversal vulnerability was identified in the Cloud Foundry component Cloud Controller that affects cf-release versions prior to v208 and Pivotal Cloud Foundry Elastic Runtime versions prior to 1.4.2. Path traversal is the ‘outbreak’ of a given directory structure through relative file paths in the user input. It aims at accessing files and directories that are stored outside the web root folder, for disallowed reading or even executing arbitrary system commands. An attacker could use a certain parameter of the file path for instance to inject ‘…/’ sequences in order to navigate through the file system. In this particular case a remote authenticated attacker can exploit the identified vulnerability in order to upload arbitrary files to the server running a Cloud Controller instance - outside the isolated application container.

Affected configurations

NVD

Node

cloudfoundrycf-releaseRange≤207

pivotal_softwarecloud_foundry_elastic_runtimeRange≤1.4.1

CPENameOperatorVersion
cloudfoundry:cf-releasecloudfoundry cf-releasele207
pivotal_software:cloud_foundry_elastic_runtimepivotal software cloud foundry elastic runtimele1.4.1

CPE	Name	Operator	Version
cloudfoundry:cf-release	cloudfoundry cf-release	le	207
pivotal_software:cloud_foundry_elastic_runtime	pivotal software cloud foundry elastic runtime	le	1.4.1

CNA Affected

[
  {
    "product": "Cloud Foundry",
    "vendor": "Pivotal",
    "versions": [
      {
        "status": "affected",
        "version": "cf-release versions prior to v208"
      },
      {
        "status": "affected",
        "version": "Elastic Runtime versions prior to 1.4.2"
      }
    ]
  }
]

References

www.securityfocus.com/bid/98691

pivotal.io/security/cve-2015-1834

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

6.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.4%

JSON

Related for CVE-2015-1834

nvd1 cloudfoundry1 prion1 cvelist1