Lucene search
DellCVELIST:CVE-2015-3190HistoryMay 25, 2017 - 5:00 p.m.
CVE-2015-3190
2017-05-2517:00:00
dell
www.cve.org
4
EPSS
0.001
Percentile
38.3%
With Cloud Foundry Runtime cf-release versions v209 or earlier, UAA Standalone versions 2.2.6 or earlier and Pivotal Cloud Foundry Runtime 1.4.5 or earlier the UAA logout link is susceptible to an open redirect which allows an attacker to insert malicious web page as a redirect parameter.
CNA Affected
[
{
"product": "Cloud Foundry",
"vendor": "Pivotal",
"versions": [
{
"status": "affected",
"version": "Runtime cf-release versions v209 or earlier"
},
{
"status": "affected",
"version": "UAA Standalone versions 2.2.6 or earlier"
},
{
"status": "affected",
"version": "Runtime 1.4.5 or earlier"
}
]
}
]References
Related
cve
cve
CVE-2015-3190
2017-05-25 17:29:00
prion
prion
Open redirect
2017-05-25 17:29:00
cloudfoundry
cloudfoundry
CVE-2015-3190 - Open redirect on Login | Cloud Foundry
2015-06-25 00:00:00
nvd
nvd
CVE-2015-3190
2017-05-25 17:29:00