CVE-2016-0883 in Cloud Foundry Ops Managerinfo

Zusammenfassung

von MITRE

Pivotal Cloud Foundry (PCF) Ops Manager before 1.5.14 and 1.6.x before 1.6.9 uses the same cookie-encryption key across different customers' installations, which allows remote attackers to bypass session authentication by leveraging knowledge of this key from another installation.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

17.12.2015

Veröffentlichung

17.09.2016

Moderieren

akzeptiert

Eintrag

VDB-91639

CPE

bereit

CWE

CWE-287 (bestätigt)

CVSS

9.8 (NVD)

EPSS

0.00156

KEV

nein

Aktivitäten

very low

Sektor

Chemical, Insurance, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-0883
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-0883
CVE Details	https://www.cvedetails.com/cve/CVE-2016-0883/

◂ Zurück Übersicht Weiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!