1 results (0.004 seconds)
CVSS: 5.9EPSS: 0%CPEs: 5EXPL: 0
CVSS: 5.9EPSS: 0%CPEs: 5EXPL: 0CVE-2017-4970
https://notcve.org/view.php?id=CVE-2017-4970
13 Jun 2017 — An issue was discovered in Cloud Foundry Foundation cf-release v255 and Staticfile buildpack versions v1.4.0 - v1.4.3. A regression introduced in the Static file build pack causes the Staticfile.auth configuration to be ignored when the Static file file is not present in the application root. Applications containing a Staticfile.auth file but not a Static file had their basic auth turned off when an operator upgraded the Static file build pack in the foundation to one of the vulnerable versions. Note that S... • https://www.cloudfoundry.org/cve-2017-4970 •