High severity8.8NVD Advisory· Published Mar 8, 2019· Updated Jun 17, 2026
CVE-2019-3780
CVE-2019-3780
Description
Cloud Foundry Container Runtime, versions prior to 0.28.0, deploys K8s worker nodes that contains a configuration file with IAAS credentials. A malicious user with access to the k8s nodes can obtain IAAS credentials allowing the user to escalate privileges to gain access to the IAAS account.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <0.28.0
- Cloud Foundry/Cloud Foundry Container Runtime (CFCR)v5Range: All
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/107434nvdThird Party AdvisoryVDB Entry
- www.cloudfoundry.org/blog/cve-2019-3780nvdVendor Advisory
News mentions
0No linked articles in our index yet.