Pivotal Application Service Security Vulnerabilities and Issues — Pivotal Application Service CVE List

Lucene search

Pivotal SoftwarePivotal Application Service

3 matches found

CVE•added 2018/07/24 7:29 p.m.•38 views

CVE-2018-11044

Pivotal Apps Manager included in Pivotal Application Service, versions 2.2.x prior to 2.2.1 and 2.1.x prior to 2.1.8 and 2.0.x prior to 2.0.17 and 1.12.x prior to 1.12.26, does not escape all user-provided content when sending invitation emails. A malicious authenticated user can inject content int...

6.5CVSS6.3AI score0.00232EPSS

CVE•added 2018/05/11 8:29 p.m.•36 views

CVE-2018-1278

Apps Manager included in Pivotal Application Service, versions 1.12.x prior to 1.12.22, 2.0.x prior to 2.0.13, and 2.1.x prior to 2.1.4 contains an authorization enforcement vulnerability. A member of any org is able to create invitations to any org for which the org GUID can be discovered. Accepti...

6.5CVSS6.3AI score0.0033EPSS

CVE•added 2018/03/16 8:29 p.m.•32 views

CVE-2018-1200

Apps Manager for PCF (Pivotal Application Service 1.11.x before 1.11.26, 1.12.x before 1.12.14, and 2.0.x before 2.0.5) allows unprivileged remote file read in its container via specially-crafted links.

6.5CVSS6.5AI score0.00324EPSS