AZL-57347 CVE-2025-22869 affecting package cf-cli for versions less than 8.7.11-2

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...

CVE-2023-45288 affecting package cf-cli for versions less than 8.7.3-6

CVE-2023-45288 affecting package cf-cli for versions less than 8.7.3-6. A patched version of the package is available...

Azure Linux 3.0 Security Update: application-gateway-kubernetes-ingress / cf-cli / cni / containerized-data-importer / containernetworking-plugins / gh / keda / kubevirt (CVE-2022-32149)

The version of application-gateway-kubernetes-ingress / cf-cli / cni / containerized-data-importer / containernetworking-plugins / gh / keda / kubevirt installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the...

Azure Linux 3.0 Security Update: application-gateway-kubernetes-ingress / cert-manager / cf-cli / cni / cni-plugins (CVE-2024-45338)

The version of application-gateway-kubernetes-ingress / cert-manager / cf-cli / cni / cni-plugins installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45338 advisory. - An attacker can craft an input t...

Azure Linux 3.0 Security Update: application-gateway-kubernetes-ingress / cf-cli / cri-o / csi-driver-lvm / golang / keda / moby-engine / node-problem-detector (CVE-2021-44716)

The version of application-gateway-kubernetes-ingress / cf-cli / cri-o / csi-driver-lvm / golang / keda / moby-engine / node-problem-detector installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-44716...

Azure Linux 3.0 Security Update: azcopy / blobfuse2 / cert-manager / cf-cli (CVE-2024-24786)

The version of azcopy / blobfuse2 / cert-manager / cf-cli installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-24786 advisory. - The protojson.Unmarshal function can enter an infinite loop when...

CVE-2024-45338 affecting package cf-cli for versions less than 8.7.3-5

CVE-2024-45338 affecting package cf-cli for versions less than 8.7.3-5. A patched version of the package is available...

CVE-2024-45338 affecting package cf-cli for versions less than 8.4.0-23

CVE-2024-45338 affecting package cf-cli for versions less than 8.4.0-23. A patched version of the package is available...

CBL Mariner 2.0 Security Update: application-gateway-kubernetes-ingress / cert-manager / cf-cli / cni / cni-plugins (CVE-2024-45338)

The version of application-gateway-kubernetes-ingress / cert-manager / cf-cli / cni / cni-plugins installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45338 advisory. - An attacker can craft an input t...

CVE-2024-45337 affecting package cf-cli for versions less than 8.7.3-4

CVE-2024-45337 affecting package cf-cli for versions less than 8.7.3-4. A patched version of the package is available...

AZL-54473 CVE-2024-45338 affecting package cf-cli for versions less than 8.7.3-5

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...

CVE-2024-24786 affecting package cf-cli for versions less than 8.4.0-22

CVE-2024-24786 affecting package cf-cli for versions less than 8.4.0-22. A patched version of the package is available...

CVE-2024-24786 affecting package cf-cli for versions less than 8.7.3-3

CVE-2024-24786 affecting package cf-cli for versions less than 8.7.3-3. A patched version of the package is available...

AZL-52251 CVE-2024-51744 affecting package cf-cli for versions less than 8.4.0-24

golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in ParseWithClaims can lead to situation where users are potentially not checking errors in the way they should be. Especially, if a token is both expired and invalid, the errors returned by...

CVE-2023-39325 affecting package cf-cli for versions less than 8.7.3-2

CVE-2023-39325 affecting package cf-cli for versions less than 8.7.3-2. A patched version of the package is available...

CBL Mariner 2.0 Security Update: cf-cli / cri-o / gh / libcontainers-common (CVE-2021-43565)

The version of cf-cli / cri-o / gh / libcontainers-common installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-43565 advisory. - The x/crypto/ssh package before 0.0.0-20211202192323-5770296d904e of...

CVE-2021-43565 affecting package cf-cli for versions less than 8.4.0-18

CVE-2021-43565 affecting package cf-cli for versions less than 8.4.0-18. A patched version of the package is available...

AZL-38302 CVE-2023-45288 affecting package cf-cli for versions less than 8.7.3-6

An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed MaxHeaderBytes, no...

AZL-35636 CVE-2024-24786 affecting package cf-cli for versions less than 8.7.3-3

The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set...

AZL-35558 CVE-2024-24786 affecting package cf-cli for versions less than 8.4.0-22

The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set...