CVE-2019-3785
CVE-2019-3785 affects Cloud Foundry Cloud Controller before 1.78.0. An endpoint with improper authorization lets a remote authenticated user with read permissions request package information and obtain a signed bit-service URL that grants write permissions to the bit-service. The issue’s impact i...