The Cloud Controller in Cloud Foundry before 239 logs user-provided service objects at creation, which allows attackers to obtain sensitive user credential information via unspecified vectors.
References
Link | Resource |
---|---|
https://pivotal.io/security/cve-2016-5006 | Vendor Advisory |
https://www.cloudfoundry.org/CVE-2016-5006/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2017-05-02T14:00:00
Updated: 2017-05-02T13:57:01
Reserved: 2016-05-24T00:00:00
Link: CVE-2016-5006
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-05-02T14:59:00.410
Modified: 2017-05-11T15:25:40.817
Link: CVE-2016-5006
JSON object: View
Redhat Information
No data.
CWE