Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CVE-2024-38826 Cloud Controller Denial of Service Attack
Vulnerability Description
Authenticated users can upload specifically crafted files to leak server resources. This behavior can potentially be used to run a denial of service attack against Cloud Controller. The Cloud Foundry project recommends upgrading the following releases: * Upgrade capi release version to 1.194.0 or greater * Upgrade cf-deployment version to v44.1.0 or greater. This includes a patched capi release
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cloud Foundry Cloud Controller 安全漏洞
Vulnerability Description
Cloud Foundry Cloud Controller是美国Cloud Foundry基金会的一个用于在Cloud Foundry架构中负责与用户交互的组件。该组件负责管理app的整个生命周期,用户可通过命令行与Cloud Server 交互。 Cloud Foundry Cloud Controller存在安全漏洞,该漏洞源于认证用户可以上传特制文件以泄露服务器资源,导致容易受到拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A