Cloud Foundry Container Runtime, versions prior to 0.28.0, deploys K8s worker nodes that contains a configuration file with IAAS credentials. A malicious user with access to the k8s nodes can obtain IAAS credentials allowing the user to escalate privileges to gain access to the IAAS account.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HCloudfoundry Container Runtime
APPCloudfoundry< 0.28.0
Related vulnerabilities
Cloud Foundry Container Runtime, versions prior to 0.29.0, deploys Kubernetes clusters utilize the same CA (Ce...
Starting with diego-release 2.55.0 and up to 2.69.0, and starting with CF Deployment 17.1 and up to 23.2.0, ap...
Due to improper path sanitization, archives containing relative file paths can cause files to be written (or o...
Cloud Foundry cf-deployment, versions prior to 7.9.0, contain java components that are using an insecure proto...
Applications in cf-release before 245 can be configured and pushed with a user-provided custom buildpack using...