CVE-2016-6658

🗓️ 29 Mar 2018 22:00:29Reported by dellType

Applications in cf-release before 245 can be configured and pushed with a user-provided custom buildpack using a URL pointing to the buildpack

Reporter	Title	Published	Views	Family All 6
Cvelist	CVE-2016-6658	29 Mar 201822:00	–	cvelist
OSV	CVE-2016-6658	29 Mar 201822:29	–	osv
NVD	CVE-2016-6658	29 Mar 201822:29	–	nvd
Prion	Design/Logic Flaw	29 Mar 201822:29	–	prion
Cloud Foundry	CVE-2016-6638: Credential Vulnerability for Custom Buildpacks \| Cloud Foundry	16 Aug 201700:00	–	cloudfoundry
Cloud Foundry	CVE-2016-6658: Incomplete fix for Credential Vulnerability for Custom Buildpacks \| Cloud Foundry	16 Aug 201700:00	–	cloudfoundry

Nvd

Node

cloudfoundry cf-releaseRange<245

Node

pivotal_software cloud_foundry_elastic_runtimeRange<1.6.49

pivotal_software cloud_foundry_elastic_runtimeRange1.7.0–1.7.31

pivotal_software cloud_foundry_elastic_runtimeRange1.8.0–1.8.11

Source	Link
pivotal	www.pivotal.io/security/cve-2016-6658

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

29 Mar 2018 22:29Current

9.2High risk

Vulners AI Score9.2

CVSS24

CVSS39.6

EPSS0.00065

CWE-200