Lucene search

K

CVE-2017-14388

🗓️ 13 Nov 2017 17:00:00Reported by dellType 
cvelist
 cvelist
🔗 www.cve.org👁 4 Views

Cloud Foundry Foundation GrootFS release 0.3.x versions prior to 0.30.0 do not validate DiffIDs, allowing specially crafted images to poison the grootfs volume cache. This could allow an attacker to provide an image layer that GrootFS would consider to be the Ubuntu base layer

Show more
Related
Affected
Refs
ReporterTitlePublishedViews
Family
NVD
CVE-2017-14388
13 Nov 201717:29
nvd
OSV
CVE-2017-14388
13 Nov 201717:29
osv
Prion
Design/Logic Flaw
13 Nov 201717:29
prion
Cloud Foundry
CVE-2017-14388: GrootFS doesn't validate DiffIDs | Cloud Foundry
9 Nov 201700:00
cloudfoundry
CVE
CVE-2017-14388
13 Nov 201717:29
cve
[
  {
    "product": "GrootFS release GrootFS release 0.3.x versions prior to 0.30.0",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "GrootFS release GrootFS release 0.3.x versions prior to 0.30.0"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
13 Nov 2017 17:00Current
7.6High risk
Vulners AI Score7.6
EPSS0.001
4
.json
Report