Lucene search
+L

4 matches found

Veracode
Veracode
added 2018/03/28 2:58 a.m.20 views

Incorrect Access Controls

github.com/cloudfoundry/silk-release has incorrect access controls. If an application has an application security group ASG which overlaps with the Silk overlay network, applications are able to access other applications on the network ignoring the configured routing policies...

8.1CVSS7.9AI score0.00988EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2018/03/27 4:29 p.m.17 views

Improper access control

Cloud Foundry Silk CNI plugin, versions prior to 0.2.0, contains an improper access control vulnerability. If the platform is configured with an application security group ASG that overlaps with the Silk overlay network, any applications can reach any other application on the network regardless o...

6.8CVSS8AI score0.00988EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/03/27 4:0 p.m.23 views

CVE-2018-1267

Cloud Foundry Silk CNI plugin, versions prior to 0.2.0, contains an improper access control vulnerability. If the platform is configured with an application security group ASG that overlaps with the Silk overlay network, any applications can reach any other application on the network regardless o...

8.1AI score0.00988EPSS
Exploits0References1
Cloud Foundry
Cloud Foundry
added 2018/03/26 12:0 a.m.44 views

CVE-2018-1267: Silk permits routing to all applications if ASG overlaps with overlay network | Cloud Foundry

Severity Medium Vendor Cloud Foundry Foundation Affected Cloud Foundry Products and Versions You are using Silk release version prior to 0.2.0 You are using cf-deployment with experimental ops file ‘use-silk-release.yml’ version prior to 1.21.0 Description Cloud Foundry Silk CNI plugin, versions...

8.1CVSS8.2AI score0.00988EPSS
Exploits0
Rows per page
Query Builder