CyberSec.Space Logo
Back to CVE Browser

CVE-2016-0898

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0770%
EPSS Percentile20.46th
PublishedMar 29, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

MySQL for PCF tiles 1.7.x before 1.7.10 were discovered to log the AWS access key in plaintext. These credentials were logged to the Service Backup component logs, and not the system log, thus were not exposed outside the Service Backup VM.

Affected Platforms (CPE)

πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.0
πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.0.1
πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.0.2
πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.0.3
πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.0.4
πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.1
πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.2
πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.3
πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.4
πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.5
πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.6
πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.7
πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.8
πŸ“¦
Vmware

Pivotal Software Mysql

= 1.7.9

References & Advisories

πŸ”— http://www.securityfocus.com/bid/95146
πŸ”— https://pivotal.io/security/cve-2016-0898
πŸ”— http://www.securityfocus.com/bid/95146
πŸ”— https://pivotal.io/security/cve-2016-0898

Related Vulnerabilities

CVE-2016-150510.0

The filesystem storage backend in Radicale before 1.1 on Windows allows remote attackers to read or write to arbitrary files via a...

CVE-2016-193110.0

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 44.0 allow remote attackers to cause a denial...

CVE-2016-134310.0

The XML parser in Cisco Information Server (CIS) 6.2 allows remote attackers to read arbitrary files or cause a denial of service ...

CVE-2016-198510.0

HPE Operations Manager 8.x and 9.0 on Windows allows remote attackers to execute arbitrary commands via a crafted serialized Java ...