CVE-2018-11046

Name of the Vulnerable Software and Affected Versions Pivotal Operations Manager versions 2.0.14 Pivotal Operations Manager versions 2.1.x prior to 2.1.6

Description The issue concerns unpatched security vulnerabilities in NGINX packages included in Pivotal Operations Manager. An attacker with access to the NGINX processes and knowledge of how to exploit these vulnerabilities may impact Operations Manager.

Recommendations For version 2.0.14, update to a version that includes the necessary security patches for NGINX. For versions 2.1.x prior to 2.1.6, update to version 2.1.6 or later to include the necessary security patches for NGINX.