Cloud Foundry Command Line Interface Release
1 CVEs
product
Monthly
CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the user authenticates with --client-credentials flag. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.
Information Disclosure
Cloud Foundry Command Line Interface
Cloud Foundry Command Line Interface Release
Cloud Foundry Deployment
Cloud Foundry Deployment Concourse Tasks
+42
NVD
CVSS 3.0
7.8
EPSS
2.1%
EPSS 2%
CVSS 7.8
HIGH
This Week
CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the user authenticates with --client-credentials flag. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.
Information Disclosure
Cloud Foundry Command Line Interface
Cloud Foundry Command Line Interface Release
+44
NVD