12 Oct 2018
CVE-2018-15755 - CVE Vulnerability
Cloud Foundry CF Networking Release, versions 2.11.0 prior to 2.16.0, contain an internal api endpoint vulnerable to SQL injection between Diego cells and the policy server. A remote authenticated malicious user with mTLS certs can issue arbitrary SQL queries and gain access to the policy server. (CVSS:0.0) (Last Update:2018-10-12)
Vulnerability Details : Cloud Foundry CF Networking Release, versions 2.11.0 prior to 2.16.0, contain an internal api endpoint vulnerable to SQL injection between Diego cells and the policy server. A remote authenticated malicious user with mTLS certs can issue arbitrary SQL queries and gain access to the policy server. Publish Date : 2018-10-12 Last Update Date : 2018-10-12 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2018-15755
- References For CVE-2018-15755
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2018-15755There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |