VYPR

BOSH Backup and Restore CLI

by Cloudfoundry

CVEs (1)

  • CVE-2019-3786Apr 24, 2019
    risk 0.00cvss epss 0.01

    Cloud Foundry BOSH Backup and Restore CLI, all versions prior to 1.5.0, does not check the authenticity of backup scripts in BOSH. A remote authenticated malicious user can modify the metadata file of a Bosh Backup and Restore job to request extra backup files from different…