Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2019-3785
HistoryMar 13, 2019 - 9:29 p.m.

CVE-2019-3785

2019-03-1321:29:00
Google
osv.dev
4

AI Score

6.3

Confidence

Low

EPSS

0.002

Percentile

51.9%

JSON

Cloud Foundry Cloud Controller, versions prior to 1.78.0, contain an endpoint with improper authorization. A remote authenticated malicious user with read permissions can request package information and receive a signed bit-service url that grants the user write permissions to the bit-service.

Related

prion 1
cve 1
cloudfoundry 1
nvd 1
cvelist 1
prion
prion
Authorization
2019-03-13 21:29:00
cve
cve
CVE-2019-3785
2019-03-13 22:00:00
cloudfoundry
cloudfoundry
CVE-2019-3785: Cloud Controller provides signed URL with write authorization to read only user | Cloud Foundry
2019-03-12 00:00:00
nvd
nvd
CVE-2019-3785
2019-03-13 21:29:00
cvelist
cvelist
CVE-2019-3785 Cloud Controller provides signed URL with write authorization to read only user
2019-03-13 22:00:00

AI Score

6.3

Confidence

Low

EPSS

0.002

Percentile

51.9%

JSON
Related for OSV:CVE-2019-3785
prion1cve1cloudfoundry1nvd1cvelist1