Over-Privileged SpaceAuditor Role Allows Application Restaging Vulnerability

Over-Privileged SpaceAuditor Role Allows Application Restaging Vulnerability

CVE-2016-8219 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

An issue was discovered in Cloud Foundry Foundation cf-release versions prior to 250 and CAPI-release versions prior to 1.12.0. A user with the SpaceAuditor role is over-privileged with the ability to restage applications. This could cause application downtime if the restage fails.

Learn more about our Api Penetration Testing.