Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cloud Foundry Foundation UAA, versions 4.12.X and 4.13.X, introduced a feature which could allow privilege escalation across identity zones for clients performing offline validation. A zone administrator could configure their zone to issue tokens which impersonate another zone, granting up to admin privileges in the impersonated zone for clients performing offline token validation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cloud Foundry Foundation uaa-release、uaa和cf-deployment 安全漏洞
Vulnerability Description
Cloud Foundry Foundation cf-deployment是美国Cloud Foundry基金会的一套开源的平台即服务(PaaS)云计算平台,它提供容器调度、持续交付和自动化服务部署等功能。uaa-release和uaa都是CF的不同版本的身份验证和管理服务终端。 Cloud Foundry Foundation uaa-release、uaa和cf-deployment中存在安全漏洞。攻击者可利用该漏洞获取管理员权限。以下产品和版本受到影响:Cloud Foundry uaa-rele
CVSS Information
N/A
Vulnerability Type
N/A