ID CVE-2017-4969
Summary The Cloud Controller in Cloud Foundry cf-release versions prior to v255 allows authenticated developer users to exceed memory and disk quotas for tasks.
References
Vulnerable Configurations
  • cpe:2.3:a:cloud_foundry:cf-release:254
    cpe:2.3:a:cloud_foundry:cf-release:254
CVSS
Base: 6.8 (as of 26-04-2017 - 23:17)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE_INSTANCE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
refmap via4
confirm https://www.cloudfoundry.org/cve-2017-4969/
Last major update 27-04-2017 - 09:23
Published 20-04-2017 - 18:59
Back to Top