7.4
CVE-2016-6657
- EPSS 0.19%
- Published 16.12.2016 09:59:00
- Last modified 12.04.2025 10:46:40
- Source security_alert@emc.com
- Teams watchlist Login
- Open Login
An open redirect vulnerability has been detected with some Pivotal Cloud Foundry Elastic Runtime components. Users of affected versions should apply the following mitigation: Upgrade PCF Elastic Runtime 1.8.x versions to 1.8.12 or later. Upgrade PCF Ops Manager 1.7.x versions to 1.7.18 or later and 1.8.x versions to 1.8.10 or later.
Data is provided by the National Vulnerability Database (NVD)
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.0
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.1
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.2
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.3
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.4
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.5
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.6
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.7
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.8
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.9
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.10
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.11
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.12
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.13
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.14
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.15
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.16
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.17
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.7.18
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.0
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.1
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.2
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.3
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.4
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.5
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.6
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.7
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.8
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.9
Pivotal Software ≫ Cloud Foundry Ops Manager Version1.8.10
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.0
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.1
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.2
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.3
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.4
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.5
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.6
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.7
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.8
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.9
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.10
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.11
Pivotal Software ≫ Cloud Foundry Elastic Runtime Version1.8.12
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.19% | 0.374 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.4 | 2.8 | 4 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N
|
| nvd@nist.gov | 5.8 | 8.6 | 4.9 |
AV:N/AC:M/Au:N/C:P/I:P/A:N
|
CWE-601 URL Redirection to Untrusted Site ('Open Redirect')
The web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a redirect.