Vulnerabilities > Pivotal Software > Cloud Foundry Elastic Runtime > 1.7.24

DATE CVE VULNERABILITY TITLE RISK
2018-03-29 CVE-2016-6658 Information Exposure vulnerability in multiple products
Applications in cf-release before 245 can be configured and pushed with a user-provided custom buildpack using a URL pointing to the buildpack.
network
low complexity
cloudfoundry pivotal-software CWE-200
critical
 9.6
9.6
2017-06-13 CVE-2017-4955 Information Exposure Through Log Files vulnerability in Pivotal Software Cloud Foundry Elastic Runtime
An issue was discovered in Pivotal PCF Elastic Runtime 1.6.x versions prior to 1.6.65, 1.7.x versions prior to 1.7.48, 1.8.x versions prior to 1.8.28, and 1.9.x versions prior to 1.9.5.
network
low complexity
pivotal-software CWE-532
critical
 9.8
9.8
2017-06-13 CVE-2017-2773 Improper Input Validation vulnerability in Pivotal Software Cloud Foundry Elastic Runtime
An issue was discovered in Pivotal PCF Elastic Runtime 1.6.x versions prior to 1.6.60, 1.7.x versions prior to 1.7.41, 1.8.x versions prior to 1.8.23, and 1.9.x versions prior to 1.9.1.
network
low complexity
pivotal-software CWE-20
critical
 9.8
9.8