CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2016-6655

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0950%
EPSS Percentile10.26th
Published2017年6月13日
Last Modified2026年5月13日

Vulnerability Description

An issue was discovered in Cloud Foundry Foundation Cloud Foundry release versions prior to v245 and cf-mysql-release versions prior to v31. A command injection vulnerability was discovered in a common script used by many Cloud Foundry components. A malicious user may exploit numerous vectors to execute arbitrary commands on servers running Cloud Foundry.

Affected Platforms (CPE)

📦
Cloudfoundry

Cf Mysql Release

<= 30
📦
Cloudfoundry

Cf Release

<= 244

References & Advisories

🔗 http://www.securityfocus.com/bid/93889
🔗 https://www.cloudfoundry.org/cve-2016-6655/
🔗 http://www.securityfocus.com/bid/93889
🔗 https://www.cloudfoundry.org/cve-2016-6655/

相關漏洞威脅

CVE-2021-392017.6

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. ### Impa...

CVE-2002-18097.5

The default configuration of the Windows binary release of MySQL 3.23.2 through 3.23.52 has a NULL root password, which could allo...

CVE-2016-66537.5

The MariaDB audit_plugin component in Pivotal Cloud Foundry (PCF) cf-mysql-release 27 and 28 allows remote attackers to obtain sen...

CVE-2009-29297.5

Multiple SQL injection vulnerabilities in TGS Content Management 0.x allow remote attackers to execute arbitrary SQL commands via ...