📦

service_broker

Vendor: pagerduty

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 0.28% Exploit Prob.

Latest CVE CVE-2019-3800 Aug 05

Security Vulnerability Index

Page 1 / 1

6.3 CVSS

CVE-2019-3800

CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the user authenticates with --client-credentials flag. A local authenticated malicious user with access to the CF CLI config file can act as that client, who is the owner of the leaked credentials.

EPSS: 0.28%

Severity: MEDIUM

Aug 05, 2019

Displaying 1 of 1 Total Entries

Total 1 Sections