Cloud Foundry CredHub CLI CVE-2019-3782 Arbitrary File Write Vulnerability
BID:107038
CVE-2019-3782 |Info
Cloud Foundry CredHub CLI CVE-2019-3782 Arbitrary File Write Vulnerability
| Bugtraq ID: | 107038 |
| Class: | Access Validation Error |
| CVE: |
CVE-2019-3782 |
| Remote: | No |
| Local: | Yes |
| Published: | Feb 11 2019 12:00AM |
| Updated: | Feb 11 2019 12:00AM |
| Credit: | CredHub Team |
| Vulnerable: |
Cloud Foundry CredHub CLI 2.2 Cloud Foundry CredHub CLI 2.1 Cloud Foundry CredHub CLI 2.0.1 Cloud Foundry CredHub CLI 2.0 Cloud Foundry CredHub CLI 1.7.7 Cloud Foundry CredHub CLI 1.7.6 Cloud Foundry CredHub CLI 1.7.5 Cloud Foundry CredHub CLI 1.7.4 |
| Not Vulnerable: |
Cloud Foundry CredHub CLI 2.2.1 |
Discussion
Cloud Foundry CredHub CLI CVE-2019-3782 Arbitrary File Write Vulnerability
Cloud Foundry CredHub CLI is prone to a security vulnerability that allows remote attackers to write arbitrary files.
Successful exploits may allow an attacker to overwrite configuration files on an affected system. This may aid in further attacks.
CredHub CLI versions prior to 2.2.1 are vulnerable.
Cloud Foundry CredHub CLI is prone to a security vulnerability that allows remote attackers to write arbitrary files.
Successful exploits may allow an attacker to overwrite configuration files on an affected system. This may aid in further attacks.
CredHub CLI versions prior to 2.2.1 are vulnerable.
Solution / Fix
Cloud Foundry CredHub CLI CVE-2019-3782 Arbitrary File Write Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.