漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Pivotal PCF Elastic Runtime 1.6.x versions prior to 1.6.60, 1.7.x versions prior to 1.7.41, 1.8.x versions prior to 1.8.23, and 1.9.x versions prior to 1.9.1. Incomplete validation logic in JSON Web Token (JWT) libraries can allow unprivileged attackers to impersonate other users in multiple components included in PCF Elastic Runtime, aka an "Unauthenticated JWT signing algorithm in multiple components" issue.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Pivotal Cloud Foundry Elastic Runtime 安全漏洞
Vulnerability Description
Pivotal Cloud Foundry(PCF)是美国Pivotal Software公司的一套开源的平台即服务(PaaS)云计算平台,它提供容器调度、持续交付和自动化服务部署等功能。Elastic Runtime是Pivotal Cloud Foundry的一个运行环境。 PCF Elastic Runtime中存在安全绕过漏洞。攻击者可利用该漏洞绕过安全限制,执行未授权的操作。以下版本受到影响:Pivotal Cloud Foundry Elastic Runtime 1.6.60之前的版本,1.
CVSS Information
N/A
Vulnerability Type
N/A