Lucene search

CVE-2018-1195

🗓️ 19 Mar 2018 18:00:29Reported by dellType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 34 Views

Cloud Controller vulnerability in token authenticatio

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
OSV	CVE-2018-1195	19 Mar 201818:29	–	osv
Cloud Foundry	CVE-2018-1195: Cloud Controller API will accept a refresh token for authentication \| Cloud Foundry	5 Mar 201800:00	–	cloudfoundry
NVD	CVE-2018-1195	19 Mar 201818:29	–	nvd
Prion	Improper access control	19 Mar 201818:29	–	prion
Cvelist	CVE-2018-1195	19 Mar 201818:00	–	cvelist

Nvd

Node

cloudfoundry capi-releaseRange<1.46.0

cloudfoundry cf-deploymentRange<1.3.0

cloudfoundry cf-releaseRange<283

[
  {
    "product": "Cloud Controller",
    "vendor": "Dell EMC",
    "versions": [
      {
        "status": "affected",
        "version": "You are using Cloud Controller version prior to 1.46.0"
      },
      {
        "status": "affected",
        "version": "You are using cf-deployment version prior to 1.3.0"
      },
      {
        "status": "affected",
        "version": "You are using cf-release version prior to 283"
      }
    ]
  }
]

Source	Link
cloudfoundry	www.cloudfoundry.org/blog/cve-2018-1195/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Mar 2018 18:29Current

8.7High risk

Vulners AI Score8.7

CVSS26.5

CVSS38.8

EPSS0.00287

CWE-613