Session Fixation Vulnerability in Cloud Foundry by Cloud Foundry Foundation
CVE-2017-4963
8.1HIGH
What is CVE-2017-4963?
A session fixation vulnerability exists in Cloud Foundry and its components, affecting configurations that authenticate against external identity providers such as SAML or OpenID Connect. This flaw can allow an attacker to hijack a user's session, posing significant security risks. It is crucial for users of the affected versions to implement safeguards to mitigate potential threats.
Affected Version(s)
Cloud Foundry Foundation Cloud Foundry Foundation
