CVE-2016-6659

moderate-risk

Published 2016-12-23

Cloud Foundry before 248; UAA 2.x before 2.7.4.12, 3.x before 3.6.5, and 3.7.x through 3.9.x before 3.9.3; and UAA bosh release (aka uaa-release) before 13.9 for UAA 3.6.5 and before 24 for UAA 3.9.3 allow attackers to gain privileges by accessing UAA logs and subsequently running a specially crafted application that interacts with a configured SAML provider.

Do I need to act?

0.32% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.1/10 High

NETWORK / HIGH complexity

Affected Products (3)

Cloud Foundry

Cloud Foundry Uaa

Cloud Foundry Uaa Bosh

Affected Vendors

Cloudfoundry Pivotal Software

References (4)

http://www.securityfocus.com/bid/95085

Vendor Advisory https://www.cloudfoundry.org/cve-2016-6659/

http://www.securityfocus.com/bid/95085

Vendor Advisory https://www.cloudfoundry.org/cve-2016-6659/

/ 100

moderate-risk

Severity 24/34 · High

Exploitability 1/34 · Minimal

Exposure 9/34 · Low