CVE CVE-2018-11088 Mappings

Pivotal Applications Manager in Pivotal Application Service, versions 2.0 prior to 2.0.21 and 2.1 prior to 2.1.13 and 2.2 prior to 2.2.5, contains a bug which may allow escalation of privileges. A space developer with access to the system org may be able to access an artifact which contains the CF admin credential, allowing them to escalate to an admin role.


Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2018-11088 Application Service primary_impact T1552 Unsecured Credentials
CVE-2018-11088 Application Service secondary_impact T1068 Exploitation for Privilege Escalation