CVE-2017-8036

Name of the Vulnerable Software and Affected Versions Cloud Foundry Foundation CAPI-release version 1.33.0

Description An issue in the Cloud Controller API allows a space developer to execute arbitrary code on the Cloud Controller VM by pushing a specially crafted application. This issue is a result of a regression introduced by the original fix for a previous problem, which was included in CAPI-release 1.33.0.

Recommendations For Cloud Foundry Foundation CAPI-release version 1.33.0, consider disabling the affected API endpoint until a patch is available. Restrict access to the Cloud Controller VM to minimize the risk of exploitation. Avoid pushing specially crafted applications to prevent arbitrary code execution.