CVE-2026-41859: CWE-295: Improper Certificate Validation in Cloud Foundry Foundation BOSH
CVE-2026-41859 is a high-severity vulnerability in Cloud Foundry Foundation's BOSH prior to version v282. 1. 9. It involves improper certificate validation (CWE-295) in the communication between nats-sync and the BOSH director, where the Net::HTTP client disables SSL verification. This allows a network man-in-the-middle attacker to steal director credentials (Basic auth header or UAA client secret) and tamper with the VM list in the NATS authorization file. Stolen credentials provide administrative access to the BOSH director. The vulnerability is fixed in BOSH version v282. 1. 9 or later. No official patch link or vendor advisory was provided in the data.
AI Analysis
Technical Summary
This vulnerability arises from the BOSH component using a Net::HTTP client configured with OpenSSL::SSL::VERIFY_NONE for SSL verification when communicating with the BOSH director. This improper certificate validation enables a man-in-the-middle attacker on the network path between nats-sync and the director to intercept and steal sensitive credentials and modify VM authorization data. The affected versions include all BOSH releases prior to and including v282.1.9. The issue is addressed in BOSH v282.1.9 and later versions.
Potential Impact
An attacker capable of performing a man-in-the-middle attack between nats-sync and the BOSH director can obtain administrative credentials, including Basic auth headers or UAA client secrets. This grants the attacker administrative access to the BOSH director, potentially allowing unauthorized control over deployments and virtual machines. Additionally, the attacker can tamper with the VM list in the NATS authorization file, potentially disrupting or manipulating authorized communications.
Mitigation Recommendations
A fix is available in BOSH version v282.1.9 and later. Users should upgrade to at least this version to remediate the vulnerability. Since no vendor advisory or patch link is provided, verify the upgrade path and patch status with official Cloud Foundry Foundation resources before applying. Until upgraded, avoid network configurations that allow man-in-the-middle attacks between nats-sync and the BOSH director.
CVE-2026-41859: CWE-295: Improper Certificate Validation in Cloud Foundry Foundation BOSH
Description
CVE-2026-41859 is a high-severity vulnerability in Cloud Foundry Foundation's BOSH prior to version v282. 1. 9. It involves improper certificate validation (CWE-295) in the communication between nats-sync and the BOSH director, where the Net::HTTP client disables SSL verification. This allows a network man-in-the-middle attacker to steal director credentials (Basic auth header or UAA client secret) and tamper with the VM list in the NATS authorization file. Stolen credentials provide administrative access to the BOSH director. The vulnerability is fixed in BOSH version v282. 1. 9 or later. No official patch link or vendor advisory was provided in the data.
CVSS v4.0
Score 7.1high
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability arises from the BOSH component using a Net::HTTP client configured with OpenSSL::SSL::VERIFY_NONE for SSL verification when communicating with the BOSH director. This improper certificate validation enables a man-in-the-middle attacker on the network path between nats-sync and the director to intercept and steal sensitive credentials and modify VM authorization data. The affected versions include all BOSH releases prior to and including v282.1.9. The issue is addressed in BOSH v282.1.9 and later versions.
Potential Impact
An attacker capable of performing a man-in-the-middle attack between nats-sync and the BOSH director can obtain administrative credentials, including Basic auth headers or UAA client secrets. This grants the attacker administrative access to the BOSH director, potentially allowing unauthorized control over deployments and virtual machines. Additionally, the attacker can tamper with the VM list in the NATS authorization file, potentially disrupting or manipulating authorized communications.
Mitigation Recommendations
A fix is available in BOSH version v282.1.9 and later. Users should upgrade to at least this version to remediate the vulnerability. Since no vendor advisory or patch link is provided, verify the upgrade path and patch status with official Cloud Foundry Foundation resources before applying. Until upgraded, avoid network configurations that allow man-in-the-middle attacks between nats-sync and the BOSH director.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- vmware
- Date Reserved
- 2026-04-22T06:22:10.082Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a20e3ffe29bf47b504cab9d
Added to database: 6/4/2026, 2:33:35 AM
Last enriched: 6/4/2026, 2:48:31 AM
Last updated: 6/4/2026, 4:02:23 AM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.