Cloud Foundry Logo
blog single gear
Blog
Security Advisory

CVE-2016-8219: Space Auditor can restage apps

by: December 22, 2016

CVE-2016-8219: Space Auditor can restage apps

Severity

Medium

Vendor

Cloud Foundry Foundation

Versions Affected

  • cf-release versions prior to 250
  • CAPI-release versions prior to 1.12.0

Description

A user with the SpaceAuditor role is over-privileged with the ability to restage applications. This could cause application downtime if the restage fails.

Mitigation

Users of affected versions should apply the following mitigation:

  • Upgrade to cf-release version 250 or later
  • Upgrade to CAPI-release version 1.12.0 or later
Cloud Foundry Foundation Security Team Profile Image

Cloud Foundry Foundation Security Team, AUTHOR

SEE ALL ARTICLES

You Might Also Like

CVE-2017-4970: Static file buildpack ignores basic authentication when misconfigured
Security Advisory

CVE-2017-4970: Static file buildpack ignores basic authentication when misconfigured

by Cloud Foundry Foundation Security Team April 10, 2017
USN-3498-1: curl vulnerabilities
Security Advisory

USN-3498-1: curl vulnerabilities

by Cloud Foundry Foundation Security Team December 14, 2017
PXC Release update for April 2020 MySQL security patches
Security Advisory

PXC Release update for April 2020 MySQL security patches

by Cloud Foundry Foundation Security Team August 10, 2020
This website uses cookies to offer you a better browsing experience. Find out more about how we use cookies and how you can change your settings. Accept