EUVD-2019-2965

Malware in sbrugna...

CVE-2019-11277

Cloud Foundry NFS Volume Service, 1.7.x versions prior to 1.7.11 and 2.x versions prior to 2.3.0, is vulnerable to LDAP injection. A remote authenticated malicious space developer can potentially inject LDAP filters via service instance creation, facilitating the malicious space developer to deny...

CVE-2019-11277

Cloud Foundry NFS Volume Service, 1.7.x versions prior to 1.7.11 and 2.x versions prior to 2.3.0, is vulnerable to LDAP injection. A remote authenticated malicious space developer can potentially inject LDAP filters via service instance creation, facilitating the malicious space developer to deny...

CVE-2019-11277

The CVE-2019-11277 entry affects Cloud Foundry NFS Volume Service: 1.7.x before 1.7.11 and 2.x before 2.3.0. The vulnerability is LDAP injection in service instance creation, exploitable by a remote authenticated space developer who can inject LDAP filters, potentially leading to service denial o...

CVE-2019-11277 Volume Services is vulnerable to an LDAP injection attack

Cloud Foundry NFS Volume Service, 1.7.x versions prior to 1.7.11 and 2.x versions prior to 2.3.0, is vulnerable to LDAP injection. A remote authenticated malicious space developer can potentially inject LDAP filters via service instance creation, facilitating the malicious space developer to deny...

CVE-2019-11277: Volume Services is vulnerable to an LDAP injection attack | Cloud Foundry

Severity High Vendor Cloud Foundry Foundation Description Cloud Foundry NFS Volume Service, 1.7.x versions prior to 1.7.11 and 2.x versions prior to 2.3.0, is vulnerable to LDAP injection. A remote authenticated malicious space developer can potentially inject LDAP filters via service instance...