CVE-2017-8036
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2017-8036
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An issue was discovered in the Cloud Controller API in Cloud Foundry Foundation CAPI-release version 1.33.0 (only). The original fix for CVE-2017-8033 included in CAPI-release 1.33.0 introduces a regression that allows a space developer to execute arbitrary code on the Cloud Controller VM by pushing a specially crafted application.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Pivotal CAPI-release 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Pivotal CAPI-release美国Pivotal Software公司的一套开源的平台即服务(PaaS)云计算平台,它提供容器调度、持续交付和自动化服务部署等功能。 Pivotal CAPI-release 1.33.0版本中的Cloud Controller API存在安全漏洞。攻击者可通过推送特制的应用程序利用该漏洞执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | Cloud Controller API CAPI-release version 1.33.0 only | Cloud Controller API CAPI-release version 1.33.0 only | - |
II. Public POCs for CVE-2017-8036
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2017-8036
Please Login to view more intelligence information
- https://www.cloudfoundry.org/cve-2017-8036/x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2017-8036
Same Patch Batch · n/a · 2017-07-24 · 30 CVEs total
| CVE-2017-11600 | Linux kernel 安全漏洞 | |
| CVE-2017-9554 | Synology DiskStation Manager 信息泄露漏洞 | |
| CVE-2017-9553 | Synology DiskStation Manager 安全漏洞 | |
| CVE-2015-2280 | AirLink101 SkyIPCam1620W Wireless N MPEG4 3GPP Network Camera 操作系统命令注入漏洞 | |
| CVE-2015-2279 | 多款OvisLink AirLive产品操作系统命令注入漏洞 | |
| CVE-2015-1847 | Appserver 路径遍历漏洞 | |
| CVE-2015-7703 | NTP 安全漏洞 | |
| CVE-2017-11327 | Tilde CMS 安全漏洞 | |
| CVE-2017-11326 | Tilde CMS 安全漏洞 | |
| CVE-2017-11325 | Tilde CMS 路径遍历漏洞 | |
| CVE-2017-11324 | Tilde CMS SQL注入漏洞 | |
| CVE-2017-10711 | SimpleRisk 跨站脚本漏洞 | |
| CVE-2017-11608 | LibSass 安全漏洞 | |
| CVE-2017-11422 | Statamic framework 访问控制错误漏洞 | |
| CVE-2017-11605 | LibSass 安全漏洞 | |
| CVE-2017-11581 | dayrui FineCms 跨站脚本漏洞 | |
| CVE-2017-11594 | Loomio Markdown解析器跨站脚本漏洞 | |
| CVE-2017-11593 | Markdown Preview Plus extension for Chrome 跨站脚本漏洞 | |
| CVE-2017-11592 | Exiv2 安全漏洞 | |
| CVE-2017-11590 | libgxps 安全漏洞 |
Showing top 20 of 30 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem - CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin
V. Comments for CVE-2017-8036
No comments yet