Filtered by vendor Cloudfoundry Subscriptions
Filtered by product Bosh Cli Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2026-41857 1 Cloudfoundry 1 Bosh Cli 2026-07-10 N/A
A compromised or malicious BOSH Director can execute arbitrary shell commands on the operator's workstation when the operator runs bosh ssh (or bosh scp/bosh logs -f) with default flags. Affected versions: BOSH CLI versions prior to 7.10.5.
CVE-2026-47828 1 Cloudfoundry 1 Bosh Cli 2026-07-10 N/A
During bosh create-env and bosh delete-env, the CLI uploads compiled CPI packages and rendered job templates to the new VM's DAV blobstore over HTTPS without verifying the server certificate, even though a CA certificate for that endpoint is available in the installation manifest. A network attacker can terminate the TLS connection, harvest the Basic-auth credentials, and read the rendered-templates archive containing every bootstrap secret for the new BOSH Director, then replay the credentials against the real VM's agent for root code execution. Affected versions: bosh-cli versions prior to v7.10.4.