CVE-2017-4994 in Cloudfoundry and Pivotal Software Products
Published on June 13, 2017

An issue was discovered in Cloud Foundry Foundation cf-release versions prior to v263; UAA release 2.x versions prior to v2.7.4.18, 3.6.x versions prior to v3.6.12, 3.9.x versions prior to v3.9.14, and other versions prior to v4.3.0; and UAA bosh release (uaa-release) 13.x versions prior to v13.16, 24.x versions prior to v24.11, 30.x versions prior to 30.4, and other versions prior to v40. There was an issue with forwarded http headers in UAA that could result in account corruption.

NVD

Products Associated with CVE-2017-4994

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2017-4994 are published in these products:

Cloudfoundry Cloud Foundry Uaa Bosh

Pivotal Software Cloud Foundry Uaa

Pivotal Software Cloud Foundry Cf

Exploit Probability

EPSS

0.26%

Percentile

48.51%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2017-4994 in Cloudfoundry and Pivotal Software ProductsPublished on June 13, 2017

Products Associated with CVE-2017-4994

Exploit Probability

CVE-2017-4994 in Cloudfoundry and Pivotal Software Products
Published on June 13, 2017