Pivotal Application Service Security Vulnerabilities and Issues — Pivotal Application Service CVE List

Lucene search

Pivotal SoftwarePivotal Application Service

1 matches found

CVE•added 2019/03/07 7:0 p.m.•32 views

CVE-2019-3777

Pivotal Application Service (PAS), versions 2.2.x prior to 2.2.12, 2.3.x prior to 2.3.7 and 2.4.x prior to 2.4.3, contain apps manager that uses a cloud controller proxy that fails to verify SSL certs. A remote unauthenticated attacker that could hijack the Cloud Controller's DNS record could inter...

9.8CVSS8.8AI score0.00723EPSS