CVE-2017-4969: Bug in CC allows users to exceed quotas
Cloud Foundry Foundation
- cf-release versions prior to v255
The Cloud Foundry Cloud Controller allows authenticated developer users to exceed memory and disk quotas for tasks.
OSS users are strongly encouraged to follow one of the mitigations below:
- Upgrade to Cloud Foundry v255  or later
This issue was responsibly reported by the Cloud Foundry CAPI Team.
2017-04-13: Initial vulnerability report published