← Back

CVE-2017-4960

nvd nist
Published: Mar 10, 2017Modified: May 13, 2026

JSON object

Loading...
7.5
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

An issue was discovered in Cloud Foundry release v247 through v252, UAA stand-alone release v3.9.0 through v3.11.0, and UAA Bosh Release v21 through v26. There is a potential to subject the UAA OAuth clients to a denial of service attack.

Affected (29)

Cloudfoundry
1 product
Cloud Foundry Uaa Bosh
Pivotal Software
2 products
Cloud Foundry
Cloud Foundry Uaa
Configuration A
29 vulnerable
Vulnerable SoftwareAffected Versions
Cloudfoundry
Cloud Foundry Uaa Bosh
Version 21
Cloud Foundry Uaa Bosh
Version 22
Cloud Foundry Uaa Bosh
Version 23
Cloud Foundry Uaa Bosh
Version 24.1
Cloud Foundry Uaa Bosh
Version 24.2
Cloud Foundry Uaa Bosh
Version 24.3
Cloud Foundry Uaa Bosh
Version 24.4
Cloud Foundry Uaa Bosh
Version 24.5
Cloud Foundry Uaa Bosh
Version 24.6
Cloud Foundry Uaa Bosh
Version 24
Cloud Foundry Uaa Bosh
Version 25
Cloud Foundry Uaa Bosh
Version 26
Pivotal Software
Cloud Foundry
Version 247.0
Cloud Foundry
Version 248.0
Cloud Foundry
Version 249.0
Cloud Foundry
Version 250.0
Cloud Foundry
Version 251.0
Cloud Foundry
Version 252.0
Pivotal Software
Cloud Foundry Uaa
Version 3.10.0
Cloud Foundry Uaa
Version 3.11.0
Cloud Foundry Uaa
Version 3.9.0
Cloud Foundry Uaa
Version 3.9.1
Cloud Foundry Uaa
Version 3.9.2
Cloud Foundry Uaa
Version 3.9.3
Cloud Foundry Uaa
Version 3.9.4
Cloud Foundry Uaa
Version 3.9.5
Cloud Foundry Uaa
Version 3.9.6
Cloud Foundry Uaa
Version 3.9.7
Cloud Foundry Uaa
Version 3.9.8

References (4)

Source: security_alert@emc.com
Third Party AdvisoryVDB Entry
Source: security_alert@emc.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.