6 matches found
SUSE: Security Advisory (SUSE-SU-2019:1220-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : cf-cli (openSUSE-2019-1429)
"This update for cf-cli fixes the following issues : cf-cli was updated: to version 6.43.0 bsc1132242 Enhancements : - cf curl supports a new --fail flag primarily for scripting purposes which returns exit code 22 for server errors story - Improves cf delete-orphaned-routes such that it uses a...
SUSE SLED15 / SLES15 Security Update : cf-cli (SUSE-SU-2019:1220-1)
"This update for cf-cli fixes the following issues : cf-cli was updated: to version 6.43.0 bsc1132242 Enhancements : cf curl supports a new --fail flag primarily for scripting purposes which returns exit code 22 for server errors story Improves cf delete-orphaned-routes such that it uses a...
CVE-2019-3781
CVE-2019-3781 affects Cloud Foundry CLI (cf-cli) prior to version 6.43.0. The root cause is improper redaction of passwords in verbose/trace/debug logging, enabling either local or remote attackers with log access to obtain part or all of a user’s password. Public docs from SUSE and OSV confirm t...
CVE-2019-3781
Cloud Foundry CLI, versions prior to v6.43.0, improperly exposes passwords when verbose/trace/debugging is turned on. A local unauthenticated or remote authenticated malicious user with access to logs may gain part or all of a users password...
CVE-2019-3781: CF CLI does not sanitize user's password in verbose/trace/debug | Cloud Foundry
Severity High Vendor Cloud Foundry Foundation Affected Cloud Foundry Products and Versions Severity is high unless otherwise noted. CF CLI All versions prior to v6.43.0 CF CLI Release All versions prior to v1.13.0 CF Networking Release All versions Prior to v2.23.0 CF Routing Release All versions...