VYPR
Unrated severityNVD Advisory· Published Jun 18, 2019· Updated Sep 17, 2024

Bosh Deployment logs leak sensitive information

CVE-2019-11271

Description

Cloud Foundry BOSH 270.x versions prior to v270.1.1, contain a BOSH Director that does not properly redact credentials when configured to use a MySQL database. A local authenticated malicious user may read any credentials that are contained in a BOSH manifest.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.