Security Advisory

CVE-2017-14389

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-11-28 07:00:00

Last updated 2024-08-05 19:27:40

Assigner dell

State PUBLISHED

Description

An issue was discovered in Cloud Foundry Foundation capi-release (all versions prior to 1.45.0), cf-release (all versions prior to v280), and cf-deployment (all versions prior to v1.0.0). The Cloud Controller does not prevent space developers from creating subdomains to an already existing route that belongs to a different user in a different org and space, aka an "Application Subdomain Takeover."

← Browse all CVEs View on cve.org ↗