Security Advisory

CVE-2018-15796

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-11-09 22:00:00

Last updated 2024-09-16 19:09:08

Assigner dell

State PUBLISHED

Description

Cloud Foundry Bits Service Release, versions prior to 2.14.0, uses an insecure hashing algorithm to sign URLs. A remote malicious user may obtain a signed URL and extract the signing key, allowing them complete read and write access to the the Bits Service storage.

← Browse all CVEs View on cve.org ↗