CVE-2019-3786 HIGH

CVE-2019-3786: BBR could run arbitrary scripts on deployment VMs

Vendor Cloud Foundry

Product BOSH Backup and Restore

Weakness CWE-269

Published April 24, 2019

Last update September 17, 2024

View on NVD All CVEs

CVSS base score

7.7/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality High

Integrity None

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

What the vulnerability does

01Description

Cloud Foundry BOSH Backup and Restore CLI, all versions prior to 1.5.0, does not check the authenticity of backup scripts in BOSH. A remote authenticated malicious user can modify the metadata file of a Bosh Backup and Restore job to request extra backup files from different jobs upon restore. The exploited hooks in this metadata script were only maintained in the cfcr-etcd-release, so clusters deployed with the BBR job for etcd in this release are vulnerable.

Key dates

02Disclosure timeline

April 24, 2019 CVE published

September 17, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2019-3786

Related vulnerabilities

Identifiers

CVE CVE-2019-3786

CWE CWE-269

CVSS 7.7 / HIGH

Affected versions