Vulnerabilities

CVE-2024-38806

by Fred · 18/07/2024

Failure to properly synchronize user’s permissions in UAA in Cloud Foundry Foundation v40.17.0 https://github.com/cloudfoundry/cf-deployment/releases/tag/v40.17.0 ,
potentially resulting in users retaining access rights they should not
have. This can allow them to perform operations beyond their intended
permissions.

More information : https://www.cloudfoundry.org/blog/cve-2024-38806-uaa-failure-to-remove-shadow-users-access

Similar

Tags: Cybersecurity Alert