An issue exists in Cloud Foundry Foundation BOSH Release 261.x versions before 261.3 and all 260.x versions. In certain cases an authenticated Director user can provide a malicious checksum that could allow them to escalate their privileges on the Director VM, aka "BOSH Director Shell Injection Vulnerabilities."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cloud foundry bosh 260.3 |
||
cloud foundry bosh 260.4 |
||
cloud foundry bosh 260.5 |
||
cloud foundry bosh 260.1 |
||
cloud foundry bosh 261 |
||
cloud foundry bosh 260.7 |
||
cloud foundry bosh 260 |
||
cloud foundry bosh 261.2 |
||
cloud foundry bosh 260.6 |
||
cloud foundry bosh 260.2 |
||
cloud foundry bosh 261.1 |