📦

nfs_volume_release

Vendor: cloudfoundry

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 0 Code Available
Total RCEs 0 Remote Access
Total CVEs 1 Total Indexed
Avg. EPSS 0.88% Exploit Prob.
Latest CVE CVE-2019-11277 Sep 23

Security Vulnerability Index

Page 1 / 1
8.1 CVSS
CVE-2019-11277

Cloud Foundry NFS Volume Service, 1.7.x versions prior to 1.7.11 and 2.x versions prior to 2.3.0, is vulnerable to LDAP injection. A remote authenticated malicious space developer can potentially inject LDAP filters via service instance creation, facilitating the malicious space developer to deny service or perform a dictionary attack.

EPSS: 0.88%