CVE-2018-11088

Published: Sep 17, 2018

Modified: Sep 17, 2024

PUBLISHED

Description

Pivotal Applications Manager in Pivotal Application Service, versions 2.0 prior to 2.0.21 and 2.1 prior to 2.1.13 and 2.2 prior to 2.2.5, contains a bug which may allow escalation of privileges. A space developer with access to the system org may be able to access an artifact which contains the CF admin credential, allowing them to escalate to an admin role.

Vendor	Product	Versions
Pivotal	Application Service	affected `2.0 - < 2.0.21` affected `2.1 - < 2.1.13` affected `2.2 - < 2.2.5`

References

https://pivotal.io/security/cve-2018-11088

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-11088

Description

Affected Products

References