CVE-2016-4435
Published on May 25, 2017

An endpoint of the Agent running on the BOSH Director VM with stemcell versions prior to 3232.6 and 3146.13 may allow unauthenticated clients to read or write blobs or cause a denial of service attack on the Director VM. This vulnerability requires that the unauthenticated clients guess or find a URL matching an existing GUID.

NVD

Affected Versions

Pivotal Cloud Foundry Version BOSH stemcell versions prior to 3232.6 and 3146.13 is affected by CVE-2016-4435

Exploit Probability

EPSS

0.55%

Percentile

67.68%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2016-4435Published on May 25, 2017

Affected Versions

Exploit Probability

CVE-2016-4435
Published on May 25, 2017