Severity
7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:X/RC:X/CR:M/IR:X/AR:X/MAV:N/MAC:L/MPR:N/MUI:N/MS:U/MC:H/MI:N/MA:N
Vendor
CloudFoundry Foundation
Description
Authentication Bypass in cf-auth-proxy in Cloud Foundry Foundation all installations allows an unauthenticated remote attacker to gain read access to every log and metric for every application and platform component via minting a JWT that the cf-auth-proxy accepts as a validlogs.admintoken
Versions Affected
*Severity is high unless otherwise noted.
- log-cache_release
-
- All versions from v?.?.? to v3.2.6 (inclusive)
- CF Deployment
-
- All versions from v?.?.? to v55.?.0 (inclusive)
Mitigation
Users of affected products are strongly encouraged to follow the mitigations below.
The Cloud Foundry project recommends upgrading the following releases:
- log-cache_release
-
- Upgrade log-cache_release versions to v3.2.7 or greater
- CF Deployment
-
- Upgrade cf-deployment version to v55.?.0 or greater
-
-
- Includes log-cache_release v3.2.7
-
Credit
Self reported by the Cloud Foundry team
History
May 22nd: Initial vulnerability report published
