34 matches found
EUVD-2018-3125
Malware in sbrugna...
EUVD-2019-13408
Malware in sbrugna...
EUVD-2018-3090
Malware in sbrugna...
EUVD-2018-3091
Malware in sbrugna...
EUVD-2018-7625
Malware in sbrugna...
Pivotal Software Pivotal Operations Manager Cross-Site Scripting Vulnerability
Pivotal Software Pivotal Operations Manager is a Cloud Foundry automated management solution from Pivotal Software, USA. The solution automates the deployment, upgrade and management of the Cloud Foundry platform. A cross-site scripting vulnerability exists in Pivotal Software Pivotal Operations...
CVE-2019-3776
Vulnerability summary (CVE-2019-3776) : Pivotal Operations Manager is affected by a reflected cross-site scripting vulnerability in several versions (2.1.x before 2.1.20, 2.2.x before 2.2.16, 2.3.x before 2.3.10, 2.4.x before 2.4.3). Impact (as described) : A remote attacker who can lure a user t...
CVE-2019-3776 Reflected XSS in Pivotal Operations Manager
Pivotal Operations Manager, 2.1.x versions prior to 2.1.20, 2.2.x versions prior to 2.2.16, 2.3.x versions prior to 2.3.10, 2.4.x versions prior to 2.4.3, contains a reflected cross site scripting vulnerability. A remote user that is able to convince an Operations Manager user to interact with...
CVE-2019-3776
Pivotal Operations Manager, 2.1.x versions prior to 2.1.20, 2.2.x versions prior to 2.2.16, 2.3.x versions prior to 2.3.10, 2.4.x versions prior to 2.4.3, contains a reflected cross site scripting vulnerability. A remote user that is able to convince an Operations Manager user to interact with...
Cross site scripting
Pivotal Operations Manager, 2.1.x versions prior to 2.1.20, 2.2.x versions prior to 2.2.16, 2.3.x versions prior to 2.3.10, 2.4.x versions prior to 2.4.3, contains a reflected cross site scripting vulnerability. A remote user that is able to convince an Operations Manager user to interact with...
CVE-2019-3776
Pivotal Operations Manager, 2.1.x versions prior to 2.1.20, 2.2.x versions prior to 2.2.16, 2.3.x versions prior to 2.3.10, 2.4.x versions prior to 2.4.3, contains a reflected cross site scripting vulnerability. A remote user that is able to convince an Operations Manager user to interact with...
Pivotal Operations Manager Elevation of Privilege Vulnerability
Pivotal Operations Manager is a Cloud Foundry automated management solution from Pivotal Software, USA. The solution automates the deployment, upgrade and management of the Cloud Foundry platform. An elevation of privilege vulnerability exists in Pivotal Operations Manager. A remote attacker can...
CVE-2018-15762
Pivotal Operations Manager, versions 2.0.x prior to 2.0.24, versions 2.1.x prior to 2.1.15, versions 2.2.x prior to 2.2.7, and versions 2.3.x prior to 2.3.1, grants all users a scope which allows for privilege escalation. A remote malicious user who has been authenticated may create a new client...
Privilege escalation
Pivotal Operations Manager, versions 2.0.x prior to 2.0.24, versions 2.1.x prior to 2.1.15, versions 2.2.x prior to 2.2.7, and versions 2.3.x prior to 2.3.1, grants all users a scope which allows for privilege escalation. A remote malicious user who has been authenticated may create a new client...
CVE-2018-15762
Pivotal Operations Manager, versions 2.0.x prior to 2.0.24, versions 2.1.x prior to 2.1.15, versions 2.2.x prior to 2.2.7, and versions 2.3.x prior to 2.3.1, grants all users a scope which allows for privilege escalation. A remote malicious user who has been authenticated may create a new client...
CVE-2018-15762
CVE-2018-15762 affects Pivotal Operations Manager. Versions 2.0.x before 2.0.24, 2.1.x before 2.1.15, 2.2.x before 2.2.7, and 2.3.x before 2.3.1 permit an authenticated remote user to create a new client with administrator privileges, effectively granting elevated privileges. The connected docume...
CVE-2018-15762 Pivotal Operations Manager gives all users heightened privileges
Pivotal Operations Manager, versions 2.0.x prior to 2.0.24, versions 2.1.x prior to 2.1.15, versions 2.2.x prior to 2.2.7, and versions 2.3.x prior to 2.3.1, grants all users a scope which allows for privilege escalation. A remote malicious user who has been authenticated may create a new client...
CVE-2018-11081
Pivotal Operations Manager, versions 2.2.x prior to 2.2.1, 2.1.x prior to 2.1.11, 2.0.x prior to 2.0.16, and 1.11.x prior to 2, fails to write the Operations Manager UAA config onto the temp RAM disk, thus exposing the configs directly onto disk. A remote user that has gained access to the...
Design/Logic Flaw
Pivotal Operations Manager, versions 2.2.x prior to 2.2.1, 2.1.x prior to 2.1.11, 2.0.x prior to 2.0.16, and 1.11.x prior to 2, fails to write the Operations Manager UAA config onto the temp RAM disk, thus exposing the configs directly onto disk. A remote user that has gained access to the...
CVE-2018-11081
Pivotal Operations Manager, versions 2.2.x prior to 2.2.1, 2.1.x prior to 2.1.11, 2.0.x prior to 2.0.16, and 1.11.x prior to 2, fails to write the Operations Manager UAA config onto the temp RAM disk, thus exposing the configs directly onto disk. A remote user that has gained access to the...