Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cloud Foundry BOSH CLI, versions prior to v3.0.1, contains an improper access control vulnerability. A user with access to an instance using the BOSH CLI can access the BOSH CLI configuration file and use its contents to perform authenticated requests to BOSH.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cloud Foundry BOSH CLI 访问控制错误漏洞
Vulnerability Description
Cloud Foundry(CF)是美国Cloud Foundry基金会的一套开源的平台即服务(PaaS)云计算平台,它提供容器调度、持续交付和自动化服务部署等功能。BOSH CLI是其中的一个命令行工具。 CF BOSH CLI 3.0.1之前版本中存在访问控制错误漏洞,该漏洞源于程序没有限制配置文件的访问权限。攻击者可利用该漏洞访问配置文件,并向BOSH发送已认证的请求。
CVSS Information
N/A
Vulnerability Type
N/A