CVE-2017-4964

Cloud Foundry Foundation BOSH Azure CPI v22 could potentially allow a maliciously crafted stemcell to execute arbitrary code on VMs created by the director, aka a "CPI code injection vulnerability."
References
Link Resource
https://www.cloudfoundry.org/cve-2017-4964/ Patch Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:cloudfoundry:bosh_azure_cpi:22:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-04-06 19:59

Updated : 2024-02-28 15:44


NVD link : CVE-2017-4964

Mitre link : CVE-2017-4964

CVE.ORG link : CVE-2017-4964


JSON object : View

Products Affected

cloudfoundry

  • bosh_azure_cpi
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')