Bosh System Metrics Server
1 CVEs
product
Monthly
BOSH System Metrics Server releases prior to 0.1.0 exposed the UAA password as a flag to a process running on the BOSH director. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Information Disclosure
Bosh System Metrics Server
NVD
CVSS 3.1
6.5
EPSS
0.9%
EPSS 1%
CVSS 6.5
MEDIUM
This Month
BOSH System Metrics Server releases prior to 0.1.0 exposed the UAA password as a flag to a process running on the BOSH director. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Information Disclosure
Bosh System Metrics Server
NVD