CVE-2016-0780 in Cloud Foundry Elastic Runtimeinfo

Summary

It was discovered that cf-release v231 and lower, Pivotal Cloud Foundry Elastic Runtime 1.5.x versions prior to 1.5.17 and Pivotal Cloud Foundry Elastic Runtime 1.6.x versions prior to 1.6.18 do not properly enforce disk quotas in certain cases. An attacker could use an improper disk quota value to bypass enforcement and consume all the disk on DEAs/CELLs causing a potential denial of service for other applications.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

12/16/2015

Disclosure

05/25/2017

Moderation

VulDB entry created

Entries

1: VDB-101775

CPE

ready

CWE

CWE-399 (Confirmed)

CVSS

6.4

EPSS

0.00389

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-0780
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-0780
CVE Details	https://www.cvedetails.com/cve/CVE-2016-0780/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!