4 matches found
Incorrect Access Controls
github.com/cloudfoundry/silk-release has incorrect access controls. If an application has an application security group ASG which overlaps with the Silk overlay network, applications are able to access other applications on the network ignoring the configured routing policies...
Improper access control
Cloud Foundry Silk CNI plugin, versions prior to 0.2.0, contains an improper access control vulnerability. If the platform is configured with an application security group ASG that overlaps with the Silk overlay network, any applications can reach any other application on the network regardless o...
CVE-2018-1267
Cloud Foundry Silk CNI plugin, versions prior to 0.2.0, contains an improper access control vulnerability. If the platform is configured with an application security group ASG that overlaps with the Silk overlay network, any applications can reach any other application on the network regardless o...
CVE-2018-1267: Silk permits routing to all applications if ASG overlaps with overlay network | Cloud Foundry
Severity Medium Vendor Cloud Foundry Foundation Affected Cloud Foundry Products and Versions You are using Silk release version prior to 0.2.0 You are using cf-deployment with experimental ops file ‘use-silk-release.yml’ version prior to 1.21.0 Description Cloud Foundry Silk CNI plugin, versions...