Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cloud Foundry Container Runtime (kubo-release), versions prior to 0.14.0, may leak UAA and vCenter credentials to application logs. A malicious user with the ability to read the application logs could use these credentials to escalate privileges.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cloud Foundry Container Runtime 安全漏洞
Vulnerability Description
Cloud Foundry Container Runtime是美国Cloud Foundry基金会的一款提供了统一的方式进行实例化、部署和管理Kubernetes集群的系统。 Cloud Foundry Container Runtime (kubo-release) 0.14.0之前版本中存在安全漏洞,该漏洞源于程序会将UAA and vCenter凭证泄露到应用程序日志中。攻击者可利用该漏洞使用这些凭证提升权限。
CVSS Information
N/A
Vulnerability Type
N/A