CVE CVE-2018-15800 Mappings

Cloud Foundry Bits Service, versions prior to 2.18.0, includes an information disclosure vulnerability. A remote malicious user may execute a timing attack to brute-force the signing key, allowing them complete read and write access to the the Bits Service storage.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2018-15800 Bits Service Release primary_impact T1078 Valid Accounts
CVE-2018-15800 Bits Service Release exploitation_technique T1110 Brute Force