CVE-2018-1267

Cloud Foundry Silk CNI plugin, versions prior to 0.2.0, contains an improper access control vulnerability. If the platform is configured with an application security group (ASG) that overlaps with the Silk overlay network, any applications can reach any other application on the network regardless of the configured routing policies.
References
Link Resource
https://www.cloudfoundry.org/blog/cve-2018-1267/ Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:cloudfoundry:silk-release:*:*:*:*:*:cloudfoundry:*:*

Information

Published : 2018-03-27 04:29

Updated : 2021-09-09 05:15


NVD link : CVE-2018-1267

Mitre link : CVE-2018-1267

Products Affected
No products.
CWE