CVE-2017-4959
N/A
N/A
Summary
An issue was discovered in Pivotal PCF Elastic Runtime 1.8.x versions prior to 1.8.29 and 1.9.x versions prior to 1.9.7. Pivotal Cloud Foundry deployments using the Pivotal Account application are vulnerable to a flaw which allows an authorized user to take over the account of another user, causing account lockout and potential escalation of privileges.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | PCF Elastic Runtime | PCF Elastic Runtime | affected |
Weaknesses
- Pivotal Cloud Foundry account authorization vulnerability
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.