Pivotal Software

Cloud Foundry Diego

1 vulnerability found

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2018-1265

  • EPSS 0.68%
  • Published 06.06.2018 20:29:00
  • Last modified 21.11.2024 03:59:29

Cloud Foundry Diego, release versions prior to 2.8.0, does not properly sanitize file paths in tar and zip files headers. A remote attacker with CF admin privileges can upload a malicious buildpack that will allow a complete takeover of a Diego Cell ...