Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2018-11864

Malware in sbrugna...

8.8CVSS8.8AI score0.00291EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/06/25 1:49 p.m.4 views

Malicious code in bosh-cli_plugin_consul (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/06/25 1:49 p.m.4 views

Malicious code in bosh-cli_plugin_redis (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
Snyk
Snykadded 2020/04/17 12:0 a.m.1 views

Malicious Package

Overview bosh-clipluginredis is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using...

8CVSS5.5AI score
Exploits0References2
Snyk
Snykadded 2020/04/17 12:0 a.m.1 views

Malicious Package

Overview bosh-clipluginconsul is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using...

8CVSS6.9AI score
Exploits0References2
Veracode
Veracodeadded 2018/03/28 2:22 a.m.11 views

Incorrect Access Controls

github.com/cloudfoundry/bosh-cli uses incorrect access controls. If a user has access to an instance, they can use the contents of the BOSH CLI configuration file to perform authenticated requests to BOSH...

8.8CVSS8.4AI score0.00291EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2018/03/27 4:29 p.m.9 views

CVE-2018-1231

Cloud Foundry BOSH CLI, versions prior to v3.0.1, contains an improper access control vulnerability. A user with access to an instance using the BOSH CLI can access the BOSH CLI configuration file and use its contents to perform authenticated requests to BOSH...

8.8CVSS8.6AI score0.00291EPSS
Exploits0References1
CVE
CVEadded 2018/03/27 4:0 p.m.34 views

CVE-2018-1231

CVE-2018-1231 affects Cloud Foundry BOSH CLI prior to v3.0.1. The issue is improper access control: a user with access to an instance can read the BOSH CLI configuration file and use its contents to perform authenticated requests to BOSH. Impact is described in sources as enabling authenticated a...

8.8CVSS8.5AI score0.00291EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2018/03/27 4:0 p.m.8 views

CVE-2018-1231

Cloud Foundry BOSH CLI, versions prior to v3.0.1, contains an improper access control vulnerability. A user with access to an instance using the BOSH CLI can access the BOSH CLI configuration file and use its contents to perform authenticated requests to BOSH...

8.6AI score0.00291EPSS
Exploits0References1
Cloud Foundry
Cloud Foundryadded 2018/03/26 12:0 a.m.35 views

CVE-2018-1231: BOSH CLI does not restrict access to configuration file | Cloud Foundry

Severity Medium Vendor Cloud Foundry Foundation Affected Cloud Foundry Products and Versions You are using BOSH CLI version prior to v3.0.1 Description Cloud Foundry BOSH CLI, versions prior to v3.0.1, contains an improper access control vulnerability. A user with access to an instance using the...

8.8CVSS8.7AI score0.00291EPSS
Exploits0
Rows per page
Query Builder