Cloud Foundry Logo
blog single gear
Blog
Security Advisory

CVE-2018-1197: GCP Metadata Endpoint Accessible from Application Containers on Windows

by: February 22, 2018

CVE-2018-1197: GCP Metadata Endpoint Accessible from Application Containers on Windows

Severity

High

Vendor

Cloud Foundry Foundation

Affected Cloud Foundry Products and Versions

  • Windows Stemcells
    • All versions prior to 1200.14

Description

Apps running inside containers in Windows on Google Cloud Platform are able to access the metadata endpoint. A malicious developer could use this access to gain privileged credentials.

Mitigation

Users of affected versions should apply the following mitigations or upgrades:

  • Releases that have fixed this issue include:
    • Windows Stemcells: 1200.14

Credit

This issue was responsibly reported by the BOSH Windows Team.

History

2018-02-22: Initial vulnerability report published.

Cloud Foundry Foundation Security Team Profile Image

Cloud Foundry Foundation Security Team, AUTHOR

SEE ALL ARTICLES

You Might Also Like

USN-5403-1: SQLite vulnerability
Security Advisory

USN-5403-1: SQLite vulnerability

by Cloud Foundry Foundation Security Team July 29, 2022
USN-3947-1: Libxslt vulnerability
Security Advisory

USN-3947-1: Libxslt vulnerability

by Cloud Foundry Foundation Security Team April 25, 2019
USN-5573-1: rsync vulnerability
Security Advisory

USN-5573-1: rsync vulnerability

by Cloud Foundry Foundation Security Team August 25, 2022
This website uses cookies to offer you a better browsing experience. Find out more about how we use cookies and how you can change your settings. Accept