PT-2026-56704 · Cloud Foundry Foundation · Bosh Cli Tool

Published

2026-07-09

·

Updated

2026-07-09

·

CVE-2026-47826

CVSS v3.1

8.8

High

VectorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
The blobs.yml path key traversal vulnerability in the BOSH CLI tool allows an attacker to write arbitrary files and exfiltrate sensitive information. Affected versions: BOSH CLI tool versions prior to v7.10.4.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

Related Identifiers

CVE-2026-47826

Affected Products

Bosh Cli Tool