Описание
Cloud Foundry Foundation BOSH Azure CPI v22 could potentially allow a maliciously crafted stemcell to execute arbitrary code on VMs created by the director, aka a "CPI code injection vulnerability."
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:cloudfoundry:bosh_azure_cpi:22:*:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.00159
Низкий
8.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
Cloud Foundry Foundation BOSH Azure CPI v22 could potentially allow a maliciously crafted stemcell to execute arbitrary code on VMs created by the director, aka a "CPI code injection vulnerability."
EPSS
Процентиль: 37%
0.00159
Низкий
8.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-94