Cloud Foundry Loggregator, versions 89.x before 89.5 or 96.x before 96.1 or 99.x before 99.1 or 101.x before 101.9 or 102.x before 102.2, does not validate app GUID structure in requests. A remote authenticated malicious user knowing the GUID of an app may construct malicious requests to read from or write to the logs of that app.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cloudfoundry loggregator |