Denial of Service Vulnerability in Cloud Foundry Diego by Pivotal
CVE-2016-3091

7.5HIGH

Key Information:

Vendor: Cloud Foundry
Status: Diego
Vendor: CVE Published:; 8 June 2017

🔔 Create Cloud Foundry Vulnerability Alert

What is CVE-2016-3091?

Cloud Foundry Diego versions 0.1468.0 through 0.1470.0 are susceptible to a denial of service attack, allowing remote adversaries to potentially disrupt service availability. Attackers can exploit this vulnerability through specific log encoding techniques, leading to significant interruptions in operations. It is crucial for users to update to the latest versions and apply recommended patches to enhance system security.

References

http://www.openwall.com/lists/oss-security/2016/05/17/8

mailing-listx_refsource_MLIST

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 8, 2017
Vulnerability Reserved
Mar 10, 2016

CVE-2016-3091 Data

JSON