Operations Manager Security Vulnerabilities and Issues — Operations Manager CVE List

Lucene search

Pivotal SoftwareOperations Manager

3 matches found

CVE•added 2019/06/06 7:29 p.m.•160 views

CVE-2019-3790

The Pivotal Ops Manager, 2.2.x versions prior to 2.2.23, 2.3.x versions prior to 2.3.16, 2.4.x versions prior to 2.4.11, and 2.5.x versions prior to 2.5.3, contain configuration that circumvents refresh token expiration. A remote authenticated user can gain access to a browser session that was supp...

6.1CVSS5.5AI score0.0006EPSS

CVE•added 2019/08/05 5:15 p.m.•45 views

CVE-2019-11270

Cloud Foundry UAA versions prior to v73.4.0 contain a vulnerability where a malicious client possessing the 'clients.write' authority or scope can bypass the restrictions imposed on clients created via 'clients.write' and create clients with arbitrary scopes that the creator does not possess.

7.5CVSS7.3AI score0.00229EPSS

CVE•added 2019/03/07 7:0 p.m.•34 views

CVE-2019-3776

Pivotal Operations Manager, 2.1.x versions prior to 2.1.20, 2.2.x versions prior to 2.2.16, 2.3.x versions prior to 2.3.10, 2.4.x versions prior to 2.4.3, contains a reflected cross site scripting vulnerability. A remote user that is able to convince an Operations Manager user to interact with mali...

7.2CVSS5.8AI score0.00192EPSS