CVE-2023-20881

EPSS 0.11%
Published 19.05.2023 15:15:08
Last modified 21.01.2025 20:15:28
Source security@vmware.com
Teams watchlist Login
Open Login

Cloud foundry instances having CAPI version between 1.140 and 1.152.0 along with loggregator-agent v7+ may override other users syslog drain credentials if they're aware of the client certificate used for that syslog drain. This applies even if the drain has zero certs. This would allow the user to override the private key and add or modify a certificate authority used for the connection.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Cloudfoundry ≫ Capi-release Version >= 1.140 <= 1.152.0

Cloudfoundry ≫ Cf-deployment Version >= 24.7.0 <= 29.0.0

Cloudfoundry ≫ Loggregator-agent Version >= 7.0 <= 7.2.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.11%	0.264

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.1	2.8	5.2	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	8.1	2.8	5.2	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CWE-295 Improper Certificate Validation

The product does not validate, or incorrectly validates, a certificate.

https://www.cloudfoundry.org/blog/cve-2023-20881-cas-for-syslog-drain-mtls-feature-can-be-overwritten/

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-20881

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-20881

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-20881

EUVD