VYPR

Credhub Release

by Cloudfoundry

CVEs (1)

  • CVE-2017-8038HigNov 27, 2017
    risk 0.57cvss 8.8epss 0.01

    In Cloud Foundry Foundation Credhub-release version 1.1.0, access control lists (ACLs) enforce whether an authenticated user can perform an operation on a credential. For installations using ACLs, the ACL was bypassed for the CredHub interpolate endpoint, allowing authenticated…