Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistDellCVELIST:CVE-2017-8037
HistoryAug 21, 2017 - 10:00 p.m.

CVE-2017-8037

2017-08-2122:00:00
dell
www.cve.org

0.002 Low

EPSS

Percentile

56.1%

JSON

In Cloud Foundry Foundation CAPI-release versions after v1.6.0 and prior to v1.38.0 and cf-release versions after v244 and prior to v270, there is an incomplete fix for CVE-2017-8035. If you took steps to remediate CVE-2017-8035 you should also upgrade to fix this CVE. A carefully crafted CAPI request from a Space Developer can allow them to gain access to files on the Cloud Controller VM for that installation, aka an Information Leak / Disclosure.

CNA Affected

[
  {
    "product": "Cloud Foundry",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Cloud Foundry"
      }
    ]
  }
]

Related

cve 2
osv 2
cloudfoundry 2
prion 2
nvd 2
cvelist 1
cve
cve
CVE-2017-8037
2017-08-21 22:29:00
CVE-2017-8035
2017-07-25 04:29:00
osv
osv
CVE-2017-8037
2017-08-21 22:29:00
CVE-2017-8035
2017-07-25 04:29:00
cloudfoundry
cloudfoundry
CVE-2017-8037: Incomplete fix for Cloud Controller API access to CC VM Contents | Cloud Foundry
2017-08-07 00:00:00
CVE-2017-8035: Cloud Controller API access to CC VM contents | Cloud Foundry
2017-07-19 00:00:00
prion
prion
Design/Logic Flaw
2017-08-21 22:29:00
Design/Logic Flaw
2017-07-25 04:29:00
nvd
nvd
CVE-2017-8037
2017-08-21 22:29:00
CVE-2017-8035
2017-07-25 04:29:00
cvelist
cvelist
CVE-2017-8035
2017-07-25 04:00:00

0.002 Low

EPSS

Percentile

56.1%

JSON
Related for CVELIST:CVE-2017-8037
cve2osv2cloudfoundry2prion2nvd2cvelist1