Vulnerabilities > CVE-2017-8036 - Unspecified vulnerability in Cloudfoundry Capi-Release 1.33.0
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
cloudfoundry
Summary
An issue was discovered in the Cloud Controller API in Cloud Foundry Foundation CAPI-release version 1.33.0 (only). The original fix for CVE-2017-8033 included in CAPI-release 1.33.0 introduces a regression that allows a space developer to execute arbitrary code on the Cloud Controller VM by pushing a specially crafted application.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |