PT-2016-4452 · Vmware+1 · Vcloud+2

Publicado

2016-09-18

Atualizado

2016-10-03

CVE-2016-0897

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Pivotal Cloud Foundry (PCF) Ops Manager versions 1.6.x through 1.6.16 Pivotal Cloud Foundry (PCF) Ops Manager versions 1.7.x through 1.7.7

Description The issue affects Pivotal Cloud Foundry (PCF) Ops Manager when used with vCloud or vSphere, and it is related to the improper enabling of SSH access for operators. This has an unspecified impact and can be exploited through remote attack vectors.

Recommendations For Pivotal Cloud Foundry (PCF) Ops Manager versions 1.6.x through 1.6.16, update to version 1.6.17 or later. For Pivotal Cloud Foundry (PCF) Ops Manager versions 1.7.x through 1.7.7, update to version 1.7.8 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-310

Identificadores relacionados

CVE-2016-0897

Produtos afetados

Pivotal Cloud Foundry (Pcf) Ops Manager

Vcloud

Vsphere

PT-2016-4452 · Vmware+1 · Vcloud+2

CVE-2016-0897

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3