CVE-2017-4955

Summary

An issue was discovered in Pivotal PCF Elastic Runtime 1.6.x versions prior to 1.6.65, 1.7.x versions prior to 1.7.48, 1.8.x versions prior to 1.8.28, and 1.9.x versions prior to 1.9.5. Several credentials were present in the logs for the Notifications errand in the PCF Elastic Runtime tile.

Affected Software

VendorProductVersion RangeStatus
n/aPCF Elastic RuntimePCF Elastic Runtimeaffected

Weaknesses

  • Credentials in Elastic Runtime Notifications errand log

ADP Enrichment

CVE Program Container

Additional References

References