CVE-2016-0930

Pivotal Cloud Foundry (PCF) Ops Manager before 1.6.19 and 1.7.x before 1.7.10, when vCloud or vSphere is used, has a default password for compilation VMs, which allows remote attackers to obtain SSH access by connecting within an installation-time period during which these VMs exist.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:pivotal:operations_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:pivotal:operations_manager:1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:pivotal:operations_manager:1.7.1:*:*:*:*:*:*:*
cpe:2.3:a:pivotal:operations_manager:1.7.2:*:*:*:*:*:*:*
cpe:2.3:a:pivotal:operations_manager:1.7.3:*:*:*:*:*:*:*
cpe:2.3:a:pivotal:operations_manager:1.7.4:*:*:*:*:*:*:*
cpe:2.3:a:pivotal:operations_manager:1.7.5:*:*:*:*:*:*:*
cpe:2.3:a:pivotal:operations_manager:1.7.6:*:*:*:*:*:*:*
cpe:2.3:a:pivotal:operations_manager:1.7.7:*:*:*:*:*:*:*
cpe:2.3:a:pivotal:operations_manager:1.7.8:*:*:*:*:*:*:*
cpe:2.3:a:pivotal:operations_manager:1.7.9:*:*:*:*:*:*:*

History

No history.

Information

Published : 2016-09-18 02:59

Updated : 2023-12-10 11:46


NVD link : CVE-2016-0930

Mitre link : CVE-2016-0930

CVE.ORG link : CVE-2016-0930


JSON object : View

Products Affected

pivotal

  • operations_manager
CWE
CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')