EUVD-2016-3254

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Loggregator Traffic Controller in Pivotal Elastic Runtime may expose invalid request URLs in 404 responses

Reporter	Title	Published	Views	Family All 7
Cloud Foundry	CVE-2016-2165 Loggregator Request URL Paths \| Cloud Foundry	23 Mar 201600:00	–	cloudfoundry
CNVD	Multiple Pivotal Product Security Bypass Vulnerabilities	19 Jul 201600:00	–	cnvd
CVE	CVE-2016-2165	25 May 201717:00	–	cve
Cvelist	CVE-2016-2165	25 May 201717:00	–	cvelist
NVD	CVE-2016-2165	25 May 201717:29	–	nvd
OSV	CVE-2016-2165	25 May 201717:29	–	osv
Prion	Code injection	25 May 201717:29	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "99a325b4-c00d-3a46-8f71-6af9f157914c",
        "vendor": {
          "name": "Pivotal"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "69a4c721-1fe2-3c47-a4da-36055f7ba29e",
        "product": {
          "name": "Cloud Foundry"
        },
        "product_version": "cf-release v231 and lower"
      },
      {
        "id": "95a11858-be21-34e4-b84f-028bc93781a1",
        "product": {
          "name": "Cloud Foundry"
        },
        "product_version": "Elastic Runtime versions prior to 1.5.19 AND 1.6.x versions prior to 1.6.20"
      }
    ]
  }
]

Source	Link
pivotal	www.pivotal.io/security/cve-2016-2165
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.16.5

CVSS 24.3

EPSS0.00255