Lucene search
+L

10 matches found

euvd
euvd
added 2026/06/02 12:31 a.m.14 views

EUVD-2026-33765

Authentication Bypass in cf-auth-proxy in Cloud Foundry Foundation all installations allows an unauthenticated remote attacker to gain read access to every log and metric for every application and platform component via minting a JWT that the cf-auth-proxy accepts as a valid logs.admin token...

7.5CVSS5.8AI score0.00393EPSS
Exploits0References2
nvd
nvd
added 2026/06/01 10:16 p.m.14 views

CVE-2026-40964

Authentication Bypass in cf-auth-proxy in Cloud Foundry Foundation all installations allows an unauthenticated remote attacker to gain read access to every log and metric for every application and platform component via minting a JWT that the cf-auth-proxy accepts as a valid logs.admin token...

7.5CVSS0.00393EPSS
Exploits0References1
cve
cve
added 2026/06/01 9:2 p.m.26 views

CVE-2026-40964

Cloud Foundry Foundation reports an Authentication Bypass in cf-auth-proxy that permits an unauthenticated remote attacker to read all logs and metrics for all apps and platform components by minting a JWT accepted as a valid logs.admin token. Affected: log-cache_release up to v3.2.6 (inclusive);...

7.5CVSS5.8AI score0.00393EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/01 9:2 p.m.34 views

CVE-2026-40964

Authentication Bypass in cf-auth-proxy in Cloud Foundry Foundation all installations allows an unauthenticated remote attacker to gain read access to every log and metric for every application and platform component via minting a JWT that the cf-auth-proxy accepts as a valid logs.admin token...

7.5CVSS0.00393EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/06/01 12:0 a.m.14 views

Cloud Foundry Foundation 安全漏洞

Cloud Foundry Foundation is an open-source platform as a service PaaS offered by the Cloud Foundry Foundation. There is a security vulnerability in Cloud Foundry Foundation’s cf-auth-proxy component. This vulnerability stems from authentication bypassing, allowing unauthenticated remote attackers...

7.5CVSS5.4AI score0.00393EPSS
Exploits0References1
cloudfoundry
cloudfoundry
added 2026/05/22 12:0 a.m.7 views

CVE-2026-40964 - Read access to CF logs | Cloud Foundry

Severity 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:X/RC:X/CR:M/IR:X/AR:X/MAV:N/MAC:L/MPR:N/MUI:N/MS:U/MC:H/MI:N/MA:N Vendor CloudFoundry Foundation Description Authentication Bypass in cf-auth-proxy in Cloud Foundry Foundation all installations allows an unauthenticated remote attacker to ga...

7.5CVSS5.5AI score0.00393EPSS
Exploits0
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-16534

Malware in sbrugna...

3.5CVSS4.8AI score0.00448EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-21147

Malicious code in bioql PyPI...

4.6CVSS5AI score0.00324EPSS
Exploits0References2
cnnvd
cnnvd
added 2022/10/17 12:0 a.m.5 views

Red Hat OpenShift 输入验证错误漏洞

Red Hat OpenShift is a Platform-as-a-Service PaaS cloud computing platform from Red Hat that enables building, testing, deploying and running applications. An input validation error vulnerability exists in Redhat Openshift Enterprise, which arises when a user creates a project named "MyProject" a...

3.5CVSS5.1AI score0.00448EPSS
Exploits0References3
attackerkb
attackerkb
added 2022/08/10 8:15 p.m.5 views

CVE-2022-23238

Linux deployments of StorageGRID formerly StorageGRID Webscale versions 11.6.0 through 11.6.0.2 deployed with a Linux kernel version less than 4.7.0 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to view limited metrics information and modify alert email...

6.5CVSS6.7AI score0.00631EPSS
Exploits0References2
Rows per page
Query Builder