← back
CVE-2016-5016

CVE-2016-5016

EPSS 1.0%
Pivotal Cloud Foundry 239 and earlier, UAA (aka User Account and Authentication Server) 3.4.1 and earlier, UAA release 12.2 and earlier, PCF (aka Pivotal Cloud Foundry) Elastic Runtime 1.6.x before 1.6.35, and PCF Elastic Runtime 1.7.x before 1.7.13 does not validate if a certificate is expired.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/cloudfoundry/cf-release/releases/tag/v240https://github.com/cloudfoundry/uaa-release/releases/tag/v11.3https://github.com/cloudfoundry/uaa-release/releases/tag/v12.3https://github.com/cloudfoundry/uaa/releases/tag/2.7.4.6https://github.com/cloudfoundry/uaa/releases/tag/3.3.0.3https://github.com/cloudfoundry/uaa/releases/tag/3.4.2https://pivotal.io/security/cve-2016-5016