CVE-2016-3085

moderate-risk

Published 2016-06-10

Apache CloudStack 4.5.x before 4.5.2.1, 4.6.x before 4.6.2.1, 4.7.x before 4.7.1.1, and 4.8.x before 4.8.0.1, when SAML-based authentication is enabled and used, allow remote attackers to bypass authentication and access the user interface via vectors related to the SAML plugin.

Do I need to act?

-

0.27% chance of exploitation

EPSS score — low exploit probability

-

Not on CISA KEV list

No confirmed active exploitation reported to CISA

?

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

6

CVSS 6.5/10 Medium

NETWORK / HIGH complexity

Affected Products (7)

Cloudstack

Cloudstack

Cloudstack

Cloudstack

Cloudstack

Cloudstack

Cloudstack

Affected Vendors

Apache

References (4)

http://packetstormsecurity.com/files/137390/Apache-CloudStack-4.5.0-Authenticati...

http://www.securityfocus.com/archive/1/538636/100/0/threaded

http://packetstormsecurity.com/files/137390/Apache-CloudStack-4.5.0-Authenticati...

http://www.securityfocus.com/archive/1/538636/100/0/threaded

35

/ 100

moderate-risk

Severity 20/34 · Moderate

Exploitability 1/34 · Minimal

Exposure 14/34 · Moderate