CVE-2026-47840
- EPSS 0.13%
- Veröffentlicht 09.07.2026 06:26:02
- Zuletzt bearbeitet 09.07.2026 16:39:17
A network attacker positioned between UAA and its LDAP directory can impersonate the directory using any certificate from any trusted CA, then harvest the LDAP bind password and every end-user password sent during simple-bind authentication, and retu...
- EPSS 0.13%
- Veröffentlicht 11.06.2026 20:03:22
- Zuletzt bearbeitet 12.06.2026 16:06:17
Cloud Foundry UAA incorrectly treated XML encryption to the Service Provider (confidentiality) as a substitute for XML signatures from the Identity Provider (authenticity) in two SAML flows: the OAuth 2.0 SAML2 bearer grant (token endpoint) and brows...
CVE-2026-41013
- EPSS 0.24%
- Veröffentlicht 01.06.2026 17:36:47
- Zuletzt bearbeitet 02.06.2026 14:01:54
Input validation bypass in SMB volume mount handling in CloudFoundry Foundation diego-release allows low-privileged CF space developer to inject arbitrary kernel CIFS mount options via bypassing the mount-option allowlist, enabling privilege escalati...
- EPSS 0.2%
- Veröffentlicht 30.04.2026 23:17:00
- Zuletzt bearbeitet 04.05.2026 18:30:01
Route Services can be leveraged to send app traffic to network destinations outside of an app's configured egress rules. As a result, a malicious developer with access to Cloudfoundry could configure a route-service that would allow it to send reques...
CVE-2026-22734
- EPSS 0.36%
- Veröffentlicht 16.04.2026 23:33:43
- Zuletzt bearbeitet 17.04.2026 15:38:09
Cloud Foundry UUA is vulnerable to a bypass that allows an attacker to obtain a token for any user and gain access to UAA-protected systems. This vulnerability exists when SAML 2.0 bearer assertions are enabled for a client, as the UAA accepts SAML 2...
CVE-2026-22727
- EPSS 0.2%
- Veröffentlicht 17.03.2026 22:45:09
- Zuletzt bearbeitet 18.03.2026 14:52:44
Unprotected internal endpoints in Cloud Foundry Capi Release 1.226.0 and below, and CF Deployment v54.9.0 and below on all platforms allows any user who has bypassed the firewall to potentially replace droplets and therefore applications allowing the...
CVE-2026-22723
- EPSS 0.22%
- Veröffentlicht 05.03.2026 20:40:27
- Zuletzt bearbeitet 10.05.2026 14:16:48
Inappropriate user token revocation due to a logic error in the token revocation endpoint implementation in Cloudfoundry UAA v77.30.0 to v78.7.0 and in Cloudfoundry Deployment v48.7.0 to v54.10.0.
CVE-2025-22246
- EPSS 0.17%
- Veröffentlicht 13.05.2025 05:14:40
- Zuletzt bearbeitet 11.07.2025 15:50:39
Cloud Foundry UAA release versions from v77.21.0 to v7.31.0 are vulnerable to a private key exposure in logs.
CVE-2024-38826
- EPSS 0.38%
- Veröffentlicht 11.11.2024 06:15:04
- Zuletzt bearbeitet 15.04.2026 00:35:42
Authenticated users can upload specifically crafted files to leak server resources. This behavior can potentially be used to run a denial of service attack against Cloud Controller. The Cloud Foundry project recommends upgrading the following releas...
CVE-2024-22279
- EPSS 0.4%
- Veröffentlicht 10.06.2024 20:15:12
- Zuletzt bearbeitet 21.11.2024 08:55:57
Improper handling of requests in Routing Release > v0.273.0 and <= v0.297.0 allows an unauthenticated attacker to degrade the service availability of the Cloud Foundry deployment if performed at scale.