cbcvebase.
CVE-2016-6636
published 2016-09-30

CVE-2016-6636: The OAuth authorization implementation in Pivotal Cloud Foundry (PCF) before 242; UAA 2.x before 2.7.4.7, 3.x before 3.3.0.5, and 3.4.x before 3.4.4; UAA BOSH…

PriorityP431medium5.3CVSS 3.0
AVNACLPRNUINSUCLINAN
EPSS
1.39%
68.8th percentile
The OAuth authorization implementation in Pivotal Cloud Foundry (PCF) before 242; UAA 2.x before 2.7.4.7, 3.x before 3.3.0.5, and 3.4.x before 3.4.4; UAA BOSH before 11.5 and 12.x before 12.5; Elastic Runtime before 1.6.40, 1.7.x before 1.7.21, and 1.8.x before 1.8.1; and Ops Manager 1.7.x before 1.7.13 and 1.8.x before 1.8.1 mishandles redirect_uri subdomains, which allows remote attackers to obtain implicit access tokens via a modified subdomain.

Affected

97 ranges· showing 25
VendorProductVersion rangeFixed in
cloudfoundrycloud_foundry_uaa_bosh<= 12.3
pivotal_softwarecloud_foundry<= 241
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime
pivotal_softwarecloud_foundry_elastic_runtime

CVSS provenance

nvdv3.05.3MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.