Medium severity6.5NVD Advisory· Published May 17, 2018· Updated Jun 17, 2026
CVE-2018-1276
CVE-2018-1276
Description
Windows 2012R2 stemcells, versions prior to 1200.17, contain an information exposure vulnerability on vSphere. A remote user with the ability to push apps can execute crafted commands to read the IaaS metadata from the VM, which may contain BOSH credentials.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <1200.17
- Cloud Foundry/Windows2012R2 stemcellv5Range: versions prior to 1200.17
Patches
Vulnerability mechanics
References
1- www.cloudfoundry.org/blog/cve-2018-1276/nvdVendor Advisory
News mentions
0No linked articles in our index yet.