7.4
CVE-2016-6657
- EPSS 0.19%
- Veröffentlicht 16.12.2016 09:59:00
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle security_alert@emc.com
- Teams Watchlist Login
- Unerledigt Login
An open redirect vulnerability has been detected with some Pivotal Cloud Foundry Elastic Runtime components. Users of affected versions should apply the following mitigation: Upgrade PCF Elastic Runtime 1.8.x versions to 1.8.12 or later. Upgrade PCF Ops Manager 1.7.x versions to 1.7.18 or later and 1.8.x versions to 1.8.10 or later.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.0
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.1
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.2
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.3
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.4
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.5
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.6
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.7
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.8
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.9
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.10
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.11
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.12
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.13
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.14
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.15
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.16
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.17
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.18
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.0
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.1
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.2
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.3
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.4
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.5
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.6
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.7
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.8
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.9
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.10
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.0
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.1
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.2
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.3
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.4
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.5
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.6
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.7
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.8
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.9
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.10
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.11
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.12
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.19% | 0.374 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.4 | 2.8 | 4 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N
|
| nvd@nist.gov | 5.8 | 8.6 | 4.9 |
AV:N/AC:M/Au:N/C:P/I:P/A:N
|
CWE-601 URL Redirection to Untrusted Site ('Open Redirect')
The web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a redirect.