CVE-2019-3800 — MEDIUM (6.3)

Q: How severe is CVE-2019-3800?

CVE-2019-3800 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2019-3800?

Check the references section above for vendor advisories and patch information. Affected products include: Pivotal Cloud Foundry Command Line Interface, Pivotal Cloud Foundry Command Line Interface Release, Pivotal Cloud Foundry Deployment, Pivotal Cloud Foundry Deployment Concourse Tasks, Pivotal Cloud Foundry Log Cache Release.

Vulnerability Description

CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the user authenticates with --client-credentials flag. A local authenticated malicious user with access to the CF CLI config file can act as that client, who is the owner of the leaked credentials.

CVSS Score

6.3

MEDIUM

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

LOW

Affected Products

Vendor	Product	Versions
Pivotal	Cloud Foundry Command Line Interface	< 6.45.0
Pivotal	Cloud Foundry Command Line Interface Release	< 1.16.0
Pivotal	Cloud Foundry Deployment	< 10.0.0
Pivotal	Cloud Foundry Deployment Concourse Tasks	< 9.3.0
Pivotal	Cloud Foundry Log Cache Release	< 2.3.1
Pivotal	Cloud Foundry Networking Release	< 2.23.0
Pivotal	Cloud Foundry Notifications	< 58
Pivotal	Cloud Foundry Routing Release	< 0.189.0
Pivotal	Cloud Foundry Smoke Test	< 40.0.113
Pivotal	Application Service	>= 2.3.0, < 2.3.14
Pivotal	Cloud Foundry Autoscaling Release	< 219
Pivotal	Cloud Foundry Event Alerts	< 1.2.8
Pivotal	Cloud Foundry Healthwatch	>= 1.4.0, < 1.4.7
Pivotal	Credhub Service Broker For Pcf	< 1.3.2
Pivotal	Metric Registrar Release	< 1.2
Pivotal	On Demand Service Broker	< 0.29.0
Pivotal	Pivotal Cloud Foundry Service Broker	< 1.4.13
Pivotal	Single Sign-On	>= 1.7.0, < 1.7.5
Anynines	Elasticsearch	< 2.1.2
Anynines	Logme	< 2.1.2

Related Weaknesses (CWE)

CWE-522 CWE-200

References

https://pivotal.io/security/cve-2019-3800Vendor Advisory
https://www.cloudfoundry.org/blog/cve-2019-3800Vendor Advisory
https://pivotal.io/security/cve-2019-3800Vendor Advisory
https://www.cloudfoundry.org/blog/cve-2019-3800Vendor Advisory

FAQ

What is CVE-2019-3800?

CVE-2019-3800 is a vulnerability with a CVSS score of 6.3 (MEDIUM). CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the user authenticates with --client-credentials flag. A local authenticated malic...

How severe is CVE-2019-3800?

CVE-2019-3800 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-3800?

Check the references section above for vendor advisories and patch information. Affected products include: Pivotal Cloud Foundry Command Line Interface, Pivotal Cloud Foundry Command Line Interface Release, Pivotal Cloud Foundry Deployment, Pivotal Cloud Foundry Deployment Concourse Tasks, Pivotal Cloud Foundry Log Cache Release.