Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2017-2773
HistoryJun 13, 2017 - 6:29 a.m.

CVE-2017-2773

2017-06-1306:29:00
Google
osv.dev
4

AI Score

6.8

Confidence

Low

EPSS

0.001

Percentile

46.9%

JSON

An issue was discovered in Pivotal PCF Elastic Runtime 1.6.x versions prior to 1.6.60, 1.7.x versions prior to 1.7.41, 1.8.x versions prior to 1.8.23, and 1.9.x versions prior to 1.9.1. Incomplete validation logic in JSON Web Token (JWT) libraries can allow unprivileged attackers to impersonate other users in multiple components included in PCF Elastic Runtime, aka an “Unauthenticated JWT signing algorithm in multiple components” issue.

Related

nvd 1
cvelist 1
cve 1
prion 1
nvd
nvd
CVE-2017-2773
2017-06-13 06:29:00
cvelist
cvelist
CVE-2017-2773
2017-06-13 06:00:00
cve
cve
CVE-2017-2773
2017-06-13 06:29:00
prion
prion
Input validation
2017-06-13 06:29:00

AI Score

6.8

Confidence

Low

EPSS

0.001

Percentile

46.9%

JSON
Related for OSV:CVE-2017-2773
nvd1cvelist1cve1prion1