CVE-2020-5399
CVE-2020-5399 affects Cloud Foundry CredHub prior to 2.5.10, where the MySQL connection is established without TLS despite configuration to use TLS. This enables an attacker with network access between CredHub and the MySQL database to eavesdrop on connections and potentially gain unauthorized ac...