CVE-2016-0897
Summary
| CVE | CVE-2016-0897 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2016-09-18 02:59:00 UTC |
| Updated | 2016-10-03 17:34:00 UTC |
| Description | Pivotal Cloud Foundry (PCF) Ops Manager before 1.6.17 and 1.7.x before 1.7.8, when vCloud or vSphere is used, does not properly enable SSH access for operators, which has unspecified impact and remote attack vectors. |
Risk And Classification
Problem Types: CWE-310
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Pivotal Software | Operations Manager | 1.7.0 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.1 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.2 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.3 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.4 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.5 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.6 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.7 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.0 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.1 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.2 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.3 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.4 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.5 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.6 | All | All | All |
| Application | Pivotal Software | Operations Manager | 1.7.7 | All | All | All |
| Application | Pivotal Software | Operations Manager | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| CVE-2016-0897 Ops Manager vSphere and vCloud vulnerability | Security | Pivotal | CONFIRM | pivotal.io | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.