3 matches found
CVE-2017-8040
In Single Sign-On for Pivotal Cloud Foundry PCF 1.3.x versions prior to 1.3.4 and 1.4.x versions prior to 1.4.3, an XXE XML External Entity attack was discovered in the Single Sign-On service dashboard. Privileged users can in some cases upload malformed XML leading to exposure of data on the...
CVE-2017-8040
CVE-2017-8040 affects Pivotal Cloud Foundry (PCF) Single Sign-On: XXE vulnerability in the SSO dashboard. Versions 1.3.x before 1.3.4 and 1.4.x before 1.4.3 are vulnerable; privileged users can upload malformed XML, potentially exposing data on the SSO service broker filesystem. Root cause is XML...
CVE-2017-8040
In Single Sign-On for Pivotal Cloud Foundry PCF 1.3.x versions prior to 1.3.4 and 1.4.x versions prior to 1.4.3, an XXE XML External Entity attack was discovered in the Single Sign-On service dashboard. Privileged users can in some cases upload malformed XML leading to exposure of data on the...