Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Pivotal Software Subscribe
Filtered by product Credhub-release
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-8038 1 Pivotal Software 1 Credhub-release 2019-10-02 4.0 MEDIUM 8.8 HIGH
In Cloud Foundry Foundation Credhub-release version 1.1.0, access control lists (ACLs) enforce whether an authenticated user can perform an operation on a credential. For installations using ACLs, the ACL was bypassed for the CredHub interpolate endpoint, allowing authenticated applications to view any credential within the CredHub installation.