Cloud Foundry Elastic Runtime@1.8.20 Security Vulnerabilities and Issues — Cloud Foundry Elastic Runtime@1.8.20 CVE List

Lucene search

Pivotal SoftwareCloud Foundry Elastic Runtime1.8.20

3 matches found

CVE•added 2017/06/13 6:29 a.m.•41 views

CVE-2017-4955

An issue was discovered in Pivotal PCF Elastic Runtime 1.6.x versions prior to 1.6.65, 1.7.x versions prior to 1.7.48, 1.8.x versions prior to 1.8.28, and 1.9.x versions prior to 1.9.5. Several credentials were present in the logs for the Notifications errand in the PCF Elastic Runtime tile.

9.8CVSS9.4AI score0.00411EPSS

CVE•added 2017/06/13 6:29 a.m.•36 views

CVE-2017-2773

An issue was discovered in Pivotal PCF Elastic Runtime 1.6.x versions prior to 1.6.60, 1.7.x versions prior to 1.7.41, 1.8.x versions prior to 1.8.23, and 1.9.x versions prior to 1.9.1. Incomplete validation logic in JSON Web Token (JWT) libraries can allow unprivileged attackers to impersonate oth...

9.8CVSS9.3AI score0.00687EPSS

CVE•added 2017/06/13 6:29 a.m.•32 views

CVE-2017-4959

An issue was discovered in Pivotal PCF Elastic Runtime 1.8.x versions prior to 1.8.29 and 1.9.x versions prior to 1.9.7. Pivotal Cloud Foundry deployments using the Pivotal Account application are vulnerable to a flaw which allows an authorized user to take over the account of another user, causing...

8.8CVSS8.7AI score0.00526EPSS