Improper Access Control Vulnerability in Cloud Foundry BOSH CLI

Improper Access Control Vulnerability in Cloud Foundry BOSH CLI

CVE-2018-1231 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

Cloud Foundry BOSH CLI, versions prior to v3.0.1, contains an improper access control vulnerability. A user with access to an instance using the BOSH CLI can access the BOSH CLI configuration file and use its contents to perform authenticated requests to BOSH.

Learn more about our User Device Pen Test.