CVE-2017-14390: CF-deployment 0.35.0 syslog misconfiguration
Cloud Foundry Foundation
Affected Cloud Foundry Products and Versions
- cf-deployment v0.35.0
A misconfiguration with Loggregator and syslog-drain in cf-deployment causes logs to be drained to unintended locations.
Users of affected versions should apply the following mitigations or upgrades:
- Releases that have fixed this issue include:
- cf-deployment: 0.36.0
This issue was responsibly reported by VMware.
2017-11-14: Initial vulnerability report published.