Vulnerability CVE-2016-6657


Published: 2016-12-16

Description:
An open redirect vulnerability has been detected with some Pivotal Cloud Foundry Elastic Runtime components. Users of affected versions should apply the following mitigation: Upgrade PCF Elastic Runtime 1.8.x versions to 1.8.12 or later. Upgrade PCF Ops Manager 1.7.x versions to 1.7.18 or later and 1.8.x versions to 1.8.10 or later.

CVSS2 => (AV:N/AC:M/Au:N/C:P/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5.8/10
4.9/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
None
Affected software
Pivotal software -> Cloud foundry ops manager 
Pivotal software -> Cloud foundry elastic runtime 

 References:
http://www.securityfocus.com/bid/94126
https://pivotal.io/security/cve-2016-6657

Copyright 2024, cxsecurity.com

 

Back to Top