CyberRota
← Ana sayfaya dön

CVE-2026-41013

HIGH · CVSS 8.1 EPSS %0.24

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-01T19:16:39.887 · Çekilme zamanı: 2026-06-30T12:06:30.494478+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-41013
Severity
HIGH
CVSS
8.1
EPSS
%0.24

Orijinal NVD Açıklaması

Input validation bypass in SMB volume mount handling in CloudFoundry Foundation diego-release allows low-privileged CF space developer to inject arbitrary kernel CIFS mount options via bypassing the mount-option allowlist, enabling privilege escalation and security control bypass on multi-tenant Diego cells. Affected versions: smb-volume-release: All versions prior to v3.60.0 CF Deployment: All versions prior to v56.0.0