Lucene search
K

5 matches found

osv
osv
added 2023/06/16 1:15 p.m.8 views

CVE-2023-20885

Vulnerability in Cloud Foundry Notifications, Cloud Foundry SMB-volume release, Cloud FOundry cf-nfs-volume release.This issue affects Notifications: All versions prior to 63; SMB-volume release: All versions prior to 3.1.19; cf-nfs-volume release: 5.0.X versions prior to 5.0.27, 7.1.X versions...

6.5CVSS5.8AI score0.00541EPSS
Exploits0References1
cvelist
cvelist
added 2023/06/16 12:18 p.m.30 views

CVE-2023-20885 CF workflows leak credentials in system audit logs

Vulnerability in Cloud Foundry Notifications, Cloud Foundry SMB-volume release, Cloud FOundry cf-nfs-volume release.This issue affects Notifications: All versions prior to 63; SMB-volume release: All versions prior to 3.1.19; cf-nfs-volume release: 5.0.X versions prior to 5.0.27, 7.1.X versions...

6.5CVSS6.6AI score0.00541EPSS
Exploits0References1
cloudfoundry
cloudfoundry
added 2019/12/16 12:0 a.m.55 views

CVE-2019-17596: x509 parsing in Golang can cause panic | Cloud Foundry

Severity High Vendor Cloud Foundry Foundation Description Various Cloud Foundry components are written in Go and are therefore vulnerable to a denial of service attack. Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public...

7.5CVSS7.4AI score0.04693EPSS
Exploits1
nvd
nvd
added 2018/12/05 6:29 p.m.24 views

CVE-2018-15797

Cloud Foundry NFS volume release, 1.2.x prior to 1.2.5, 1.5.x prior to 1.5.4, 1.7.x prior to 1.7.3, logs the cf admin username and password when running the nfsbrokerpush BOSH deploy errand. A remote authenticated user with access to BOSH can obtain the admin credentials for the Cloud Foundry...

8.8CVSS8.5AI score0.01579EPSS
Exploits0References1
cve
cve
added 2018/12/05 6:0 p.m.37 views

CVE-2018-15797

The CVE affects Cloud Foundry NFS volume release versions 1.2.x before 1.2.5, 1.5.x before 1.5.4, and 1.7.x before 1.7.3. A remote authenticated user with access to BOSH can obtain the CF admin username and password from logs produced by the nfsbrokerpush deploy errand, exposing admin credentials...

8.8CVSS8.6AI score0.01579EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder