CVE-2016-9880

Summary

The GemFire broker for Cloud Foundry 1.6.x before 1.6.5 and 1.7.x before 1.7.1 has multiple API endpoints which do not require authentication and could be used to gain access to the cluster managed by the broker.

Affected Software

VendorProductVersion RangeStatus
Dell EMCGemFire broker for Cloud Foundry1.6.x versions prior to 1.6.5affected
Dell EMCGemFire broker for Cloud Foundry1.7.x versions prior to 1.7.1affected

Weaknesses

  • Unauthenticated access

ADP Enrichment

CVE Program Container

Additional References

References