VmwareCVELIST:CVE-2023-20885CVE-2023-20885 CF workflows leak credentials in system audit logs
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
34.8%
Vulnerability in Cloud Foundry Notifications, Cloud Foundry SMB-volume release, Cloud FOundry cf-nfs-volume release.This issue affects Notifications: All versions prior to 63; SMB-volume release: All versions prior to 3.1.19; cf-nfs-volume release: 5.0.X versions prior to 5.0.27, 7.1.X versions prior to 7.1.19.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": " Notifications",
"vendor": "Cloud Foundry",
"versions": [
{
"status": "affected",
"version": "All versions prior to 63"
}
]
},
{
"defaultStatus": "unaffected",
"product": "SMB-volume release",
"vendor": "Cloud Foundry",
"versions": [
{
"status": "affected",
"version": "All versions prior to 3.1.19"
}
]
},
{
"defaultStatus": "unaffected",
"product": "cf-nfs-volume release",
"vendor": "Cloud FOundry",
"versions": [
{
"status": "affected",
"version": "5.0.x versions prior to 5.0.27"
},
{
"status": "affected",
"version": "7.1.x versions prior to 7.1.19"
}
]
}
]Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
34.8%