Cloud Foundry Silk CNI plugin, versions prior to 0.2.0, contains an improper access control vulnerability. If the platform is configured with an application security group (ASG) that overlaps with the Silk overlay network, any applications can reach any other application on the network regardless of the configured routing policies.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published: 2018-03-27T16:00:00Z

Updated: 2024-09-17T02:11:56.088Z

Reserved: 2017-12-06T00:00:00

Link: CVE-2018-1267

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-03-27T16:29:00.467

Modified: 2024-11-21T03:59:30.117

Link: CVE-2018-1267

cve-icon Redhat

No data.