CVE-2016-9880 Vulnerability Details

  /     /     /  

CVE-2016-9880 Metadata Quick Info

CVE Published: 16/03/2018 | CVE Updated: 16/09/2024 | CVE Year: 2016
Source: dell | Vendor: Dell EMC | Product: GemFire broker for Cloud Foundry
Status : PUBLISHED

---

CVE-2016-9880 Description

The GemFire broker for Cloud Foundry 1.6.x before 1.6.5 and 1.7.x before 1.7.1 has multiple API endpoints which do not require authentication and could be used to gain access to the cluster managed by the broker.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: Unauthenticated access
Source: Dell EMC

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).