Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2017-8048

Published: 04/10/2017 Updated: 10/08/2021
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Pivotal

Vulnerability Summary

In Cloud Foundry capi-release versions 1.33.0 and later, before 1.42.0 and cf-release versions 268 and later, before 274, the original fix for CVE-2017-8033 introduces an API regression that allows a space developer to execute arbitrary code on the Cloud Controller VM by pushing a specially crafted application. NOTE: 274 resolves the vulnerability but has a serious bug that is fixed in 275.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

pivotal capi-release 1.34.0

pivotal capi-release 1.33.0

cloudfoundry cf-release 269

cloudfoundry cf-release 268

pivotal capi-release 1.41.0

pivotal capi-release 1.40.0

pivotal capi-release 1.39.0

cloudfoundry cf-release 272

cloudfoundry cf-release 270

pivotal capi-release 1.37.0

pivotal capi-release 1.35.0

cloudfoundry cf-release 273

cloudfoundry cf-release 271

pivotal capi-release 1.38.0

pivotal capi-release 1.36.0

References

NVD-CWE-noinfohttps://www.cloudfoundry.org/cve-2017-8048/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322cross-site request forgeryunauthorizedCVE-2024-33925reflected XSSCVE-2023-51580CVE-2023-51579CVE-2015-2051CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook