Vulnerability Name:

CVE-2016-0781 (CCN-128099)

Assigned:2015-12-16
Published:2017-05-25
Updated:2021-08-06
Summary:The UAA OAuth approval pages in Cloud Foundry v208 to v231, Login-server v1.6 to v1.14, UAA v2.0.0 to v2.7.4.1, UAA v3.0.0 to v3.2.0, UAA-Release v2 to v7 and Pivotal Elastic Runtime 1.6.x versions prior to 1.6.20 are vulnerable to an XSS attack by specifying malicious java script content in either the OAuth scopes (SCIM groups) or SCIM group descriptions.
CVSS v3 Severity:6.1 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): None
6.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
5.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-79
Vulnerability Consequences:Cross-Site Scripting
References:Source: MITRE
Type: CNA
CVE-2016-0781

Source: XF
Type: UNKNOWN
pivotal-cve20160781-xss(128099)

Source: CCN
Type: Pivotal Security Web site
CVE-2016-0781 UAA Persistent XSS Vulnerability

Source: CONFIRM
Type: Vendor Advisory
https://pivotal.io/security/cve-2016-0781

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2016-0781

Vulnerable Configuration:Configuration 1:
  • cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.3:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.4:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.5:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.6:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.19:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_uaa:3.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_uaa:3.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_uaa:3.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:219:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:220:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:221:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_uaa:3.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.7:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:226:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.9:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.0:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.2:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:210:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:login-server:-:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:217:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.11:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:215:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:222:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.18:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.12:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.16:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:208:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:224:*:*:*:*:*:*:*
  • OR cpe:/a:cloudfoundry:cloud_foundry_uaa_bosh:6:*:*:*:*:*:*:*
  • OR cpe:/a:cloudfoundry:cloud_foundry_uaa_bosh:4:*:*:*:*:*:*:*
  • OR cpe:/a:cloudfoundry:cloud_foundry_uaa_bosh:5:*:*:*:*:*:*:*
  • OR cpe:/a:cloudfoundry:cloud_foundry_uaa_bosh:2:*:*:*:*:*:*:*
  • OR cpe:/a:cloudfoundry:cloud_foundry_uaa_bosh:3:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:231:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.13:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:241:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:211:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:209:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_uaa:*:*:*:*:*:*:*:* (Version <= 2.7.4.1)
  • OR cpe:/a:pivotal_software:cloud_foundry:213:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.14:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.17:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:212:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:218:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.10:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:223:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:229:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.15:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:228:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:225:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:214:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.8:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry_elastic_runtime:1.6.1:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:230:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:227:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:216:*:*:*:*:*:*:*
  • OR cpe:/a:cloudfoundry:cloud_foundry_uaa_bosh:7:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:cloudfoundry:user_account_and_authentication:2.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:cloudfoundry:user_account_and_authentication:2.7.4.1:*:*:*:*:*:*:*
  • OR cpe:/a:cloudfoundry:user_account_and_authentication:3.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:cloudfoundry:user_account_and_authentication:3.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:208:*:*:*:*:*:*:*
  • OR cpe:/a:pivotal_software:cloud_foundry:231:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    pivotal_software cloud foundry elastic runtime 1.6.3
    pivotal_software cloud foundry elastic runtime 1.6.4
    pivotal_software cloud foundry elastic runtime 1.6.5
    pivotal_software cloud foundry elastic runtime 1.6.6
    pivotal_software cloud foundry elastic runtime 1.6.19
    pivotal_software cloud foundry uaa 3.0.0
    pivotal_software cloud foundry uaa 3.0.1
    pivotal_software cloud foundry uaa 3.1.0
    pivotal_software cloud foundry 219
    pivotal_software cloud foundry 220
    pivotal_software cloud foundry 221
    pivotal_software cloud foundry uaa 3.2.0
    pivotal_software cloud foundry elastic runtime 1.6.7
    pivotal_software cloud foundry 226
    pivotal_software cloud foundry elastic runtime 1.6.9
    pivotal_software cloud foundry elastic runtime 1.6.0
    pivotal_software cloud foundry elastic runtime 1.6.2
    pivotal_software cloud foundry 210
    pivotal_software login-server -
    pivotal_software cloud foundry 217
    pivotal_software cloud foundry elastic runtime 1.6.11
    pivotal_software cloud foundry 215
    pivotal_software cloud foundry 222
    pivotal_software cloud foundry elastic runtime 1.6.18
    pivotal_software cloud foundry elastic runtime 1.6.12
    pivotal_software cloud foundry elastic runtime 1.6.16
    pivotal_software cloud foundry 208
    pivotal_software cloud foundry 224
    cloudfoundry cloud foundry uaa bosh 6
    cloudfoundry cloud foundry uaa bosh 4
    cloudfoundry cloud foundry uaa bosh 5
    cloudfoundry cloud foundry uaa bosh 2
    cloudfoundry cloud foundry uaa bosh 3
    pivotal_software cloud foundry 231
    pivotal_software cloud foundry elastic runtime 1.6.13
    pivotal_software cloud foundry 241
    pivotal_software cloud foundry 211
    pivotal_software cloud foundry 209
    pivotal_software cloud foundry uaa *
    pivotal_software cloud foundry 213
    pivotal_software cloud foundry elastic runtime 1.6.14
    pivotal_software cloud foundry elastic runtime 1.6.17
    pivotal_software cloud foundry 212
    pivotal_software cloud foundry 218
    pivotal_software cloud foundry elastic runtime 1.6.10
    pivotal_software cloud foundry 223
    pivotal_software cloud foundry 229
    pivotal_software cloud foundry elastic runtime 1.6.15
    pivotal_software cloud foundry 228
    pivotal_software cloud foundry 225
    pivotal_software cloud foundry 214
    pivotal_software cloud foundry elastic runtime 1.6.8
    pivotal_software cloud foundry elastic runtime 1.6.1
    pivotal_software cloud foundry 230
    pivotal_software cloud foundry 227
    pivotal_software cloud foundry 216
    cloudfoundry cloud foundry uaa bosh 7
    cloudfoundry uaa 2.0.0
    cloudfoundry uaa 2.7.4.1
    cloudfoundry uaa 3.0.0
    cloudfoundry uaa 3.2.0
    pivotal_software cloud foundry 208
    pivotal_software cloud foundry 231