CVE-2017-8040 is a vulnerability in VMware Single Sign On Pivotal Cloud Foundry
Published on September 9, 2017

In Single Sign-On for Pivotal Cloud Foundry (PCF) 1.3.x versions prior to 1.3.4 and 1.4.x versions prior to 1.4.3, an XXE (XML External Entity) attack was discovered in the Single Sign-On service dashboard. Privileged users can in some cases upload malformed XML leading to exposure of data on the Single Sign-On service broker file system.

NVD

Products Associated with CVE-2017-8040

Want to know whenever a new CVE is published for VMware Single Sign On Pivotal Cloud Foundry? stack.watch will email you.

VMware Single Sign On Pivotal Cloud Foundry

Exploit Probability

EPSS

0.13%

Percentile

32.36%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2017-8040 is a vulnerability in VMware Single Sign On Pivotal Cloud FoundryPublished on September 9, 2017

Products Associated with CVE-2017-8040

Exploit Probability

CVE-2017-8040 is a vulnerability in VMware Single Sign On Pivotal Cloud Foundry
Published on September 9, 2017