CVE-2016-0929 in Cloud Foundryinfo

Summary

The metrics-collection component in RabbitMQ for Pivotal Cloud Foundry (PCF) 1.6.x before 1.6.4 logs command lines of failed commands, which might allow context-dependent attackers to obtain sensitive information by reading the log data, as demonstrated by a syslog message that contains credentials from a command line.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

12/17/2015

Disclosure

09/17/2016

Moderation

VulDB entry created

Entries

VDB-91646 (1)

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

7.5

EPSS

0.00306

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-0929
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-0929
CVE Details	https://www.cvedetails.com/cve/CVE-2016-0929/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!