Lucene search
DellCVELIST:CVE-2017-4994HistoryJun 13, 2017 - 6:00 a.m.
CVE-2017-4994
2017-06-1306:00:00
dell
www.cve.org
0.001 Low
EPSS
Percentile
40.5%
An issue was discovered in Cloud Foundry Foundation cf-release versions prior to v263; UAA release 2.x versions prior to v2.7.4.18, 3.6.x versions prior to v3.6.12, 3.9.x versions prior to v3.9.14, and other versions prior to v4.3.0; and UAA bosh release (uaa-release) 13.x versions prior to v13.16, 24.x versions prior to v24.11, 30.x versions prior to 30.4, and other versions prior to v40. There was an issue with forwarded http headers in UAA that could result in account corruption.
CNA Affected
[
{
"product": "Cloud Foundry",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Cloud Foundry"
}
]
}
]References
Related
veracode
veracode
Forwarded HTTP Headers
2017-06-14 06:29:03
nvd
nvd
CVE-2017-4994
2017-06-13 06:29:00
cve
cve
CVE-2017-4994
2017-06-13 06:29:00
cloudfoundry
cloudfoundry
CVE-2017-4994: Forwarded Headers in UAA | Cloud Foundry
2017-06-06 00:00:00
osv
osv
CVE-2017-4994
2017-06-13 06:29:00
prion
prion
Design/Logic Flaw
2017-06-13 06:29:00