Uaa Release (Oss)

Cloud Foundry cf-deployment, versions prior to 7.9.0, contain java components that are using an insecure protocol to fetch dependencies when building. A remote unauthenticated malicious attacker could hijack the DNS entry for the dependency, and inject malicious code into the component.

Published: 2019-04-25T20:17:37.272Z
Updated: 2024-09-17T02:56:41.904Z

Cloud Foundry UAA, versions prior to v73.4.0, does not set an X-FRAME-OPTIONS header on various endpoints. A remote user can perform clickjacking attacks on UAA's frontend sites.

Published: 2019-07-18T15:47:00.225Z
Updated: 2024-09-16T16:28:44.977Z

Cloud Foundry UAA Release, versions prior to 71.0, allows clients to be configured with an insecure redirect uri. Given a UAA client was configured with a wildcard in the redirect uri's subdomain, a remote malicious unauthenticated user can craft a phishing link to get a UAA access code from the victim.

Published: 2019-04-25T20:17:37.233Z
Updated: 2024-09-16T22:02:12.371Z

Cloud Foundry UAA, versions prior to 73.0.0, falls back to appending “unknown.org” to a user's email address when one is not provided and the user name does not contain an @ character. This domain is held by a private company, which leads to attack vectors including password recovery emails sent to a potentially fraudulent address. This would allow the attacker to gain complete control of the user's account.

Published: 2019-06-19T22:28:07.316Z
Updated: 2024-09-16T21:57:57.203Z

Cloud Foundry UAA, versions prior to v70.0, allows a user to update their own email address. A remote authenticated user can impersonate a different user by changing their email address to that of a different user.

Published: 2019-03-07T19:00:00.000Z
Updated: 2024-09-16T22:31:19.423Z

CF UAA versions prior to 74.1.0 can request scopes for a client that shouldn't be allowed by submitting an array of requested scopes. A remote malicious user can escalate their own privileges to any scope, allowing them to take control of UAA and the resources it controls.

Published: 2019-09-26T21:15:10.245Z
Updated: 2024-09-17T02:36:57.958Z

CF UAA versions prior to 74.1.0, allow external input to be directly queried against. A remote malicious user with 'client.write' and 'groups.update' can craft a SCIM query, which leaks information that allows an escalation of privileges, ultimately allowing the malicious user to gain control of UAA scopes they should not have.

Published: 2019-09-26T21:11:24.033Z
Updated: 2024-09-16T23:51:53.473Z

Cloud Foundry UAA, versions prior to 74.0.0, is vulnerable to an XSS attack. A remote unauthenticated malicious attacker could craft a URL that contains a SCIM filter that contains malicious JavaScript, which older browsers may execute.

Published: 2019-08-09T19:22:17.731Z
Updated: 2024-09-16T20:12:34.197Z

Cloud Foundry UAA versions prior to v73.4.0 contain a vulnerability where a malicious client possessing the 'clients.write' authority or scope can bypass the restrictions imposed on clients created via 'clients.write' and create clients with arbitrary scopes that the creator does not possess.

Published: 2019-08-05T16:21:54.798Z
Updated: 2024-09-17T04:19:01.006Z

Cloud Foundry UAA version prior to 73.3.0, contain endpoints that contains improper escaping. An authenticated malicious user with basic read privileges for one identity zone can extend those reading privileges to all other identity zones and obtain private information on users, clients, and groups in all other identity zones.

Published: 2019-07-11T18:11:36.916Z
Updated: 2024-09-17T03:13:54.242Z