cf-dev@lists.cloudfoundry.org | CVE-2017-4973: Privilege Escalation in UAA

Home Messages Hashtags Subgroups

Date Date 1 - 1 of 1

Molly Crowther #6714 CF Devs, Please see information for the following high UAA CVE. This issue was fixed in the same releases as CVE-2017-4972 (the blind SQL injection) so if you already have plans to upgrade, you don't need to take any further action. https://www.cloudfoundry.org/cve-2017-4973/ Please let me know if you have any other questions or concerns. Thanks, Molly Crowther Cloud Foundry Foundation Security Team attachment.html
More All Messages By This Member

1 - 1 of 1