Cloud Controller API versions prior to 1.106.0 logs service broker credentials if the default value of db logging config field is changed. CAPI database logs service broker password in plain text whenever a job to clean up orphaned items is run by Cloud Controller.
References
Link | Resource |
---|---|
https://www.cloudfoundry.org/blog/cve-2021-22115-capi-logs-service-broker-credentials/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2021-04-08 18:15
Updated : 2024-02-04 21:47
NVD link : CVE-2021-22115
Mitre link : CVE-2021-22115
CVE.ORG link : CVE-2021-22115
JSON object : View
Products Affected
cloudfoundry
- cf-deployment
- capi-release
CWE
CWE-522
Insufficiently Protected Credentials