CVE-2016-0732

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2016-0732
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-0732.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2016-0732
Published
2017-09-07T13:29:00.293Z
Modified
2026-04-10T03:46:50.793453Z
Severity
  • 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

The identity zones feature in Pivotal Cloud Foundry 208 through 229; UAA 2.0.0 through 2.7.3 and 3.0.0; UAA-Release 2 through 4, when configured with multiple identity zones; and Elastic Runtime 1.6.0 through 1.6.13 allows remote authenticated users with privileges in one zone to gain privileges and perform operations on a different zone via unspecified vectors.

References

Affected packages

Git / github.com/cloudfoundry/cf-release

Affected ranges

Type
GIT
Repo
https://github.com/cloudfoundry/cf-release
Events
Introduced
6003f780fffc7e2e4dcf9ba76dc20a7bde65583c
Last affected
3c73e6d21d24061dcd56ba141e2fca5f50600eb7
Database specific 
{
    "versions": [
        {
            "introduced": "208"
        },
        {
            "last_affected": "229"
        }
    ]
}
Type
GIT
Repo
https://github.com/cloudfoundry/uaa
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
6e2a351c64789a7416165191515106639735bf97
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
43fb9f167455355141f31df9282745d003a237e9
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
406965b6c26a480d6d4dc670a71ac65bc96636ac
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
620cac299b4e83fd542eea27f0a2c3bb46a93760
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
4ae9109107102bcf0b3849f5aa964abde4629548
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
ecd98f0a3df71eee348f084fbb51b1d9a4f116a3
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
c996291aa10fdd48d3e207f8e4bab099a5685937
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
d7bdf6bf65bfda8f68eaf454f534be5fb7120282
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
c4ee4536722be4a2b005c99f7f473e93d6ee1350
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
92a9e26ef3bb9b0b39246297dbac88d2149ecb64
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
e4f64ee0861a670162a86cb6fea93c2367be28a4
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
37c5b13511d4d64405a29a60998221c5e7de1783
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
04622a0ff1bd8bdc4bf7d8b4a646e27225fb59f4
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
e560f8f552119d0159bd7d9c15dd95f0c7216426
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
f7ce199f33e9dfc460f6004893ae1e5daaef64c3
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
a32678a82805c9c8296a821129f2bf974ca65e2e
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
091c5e5961dd33c8c7ca5a15f4020e47d266a1c3
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
45e5454d2673cf25b99e8447072dcfa3a1912c06
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
3172506e9a318f0b37dfb4f1d0fbc029720a6206
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
d272f57c9eb67eea12f097ecd14a599b0ec80e06
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
0f212916b313538579399686234060f14df9d879
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
eae6724659f5ef2fdf5d2ac6db1aba61087cc01a
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
62c941c1effeb998aa503355bd7e2bde8efe879a
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
82dc8fe20c058d0f2ab54f312d36a0bd6d8d650e
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
fc56717a849e02908b6c4c98d8a3fe9dda4a7cb2
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
cab137b899bb345b2692f6b02a4218c9f2fe49d0
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
4590929ad0ba38e298e1eb37cd13810df3d54435
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
c614dc61e2568564536a5ad427dc4deae6be3f84
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
4d8876053a5062e4262b49eea5fa558da01db9f5
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
ff0958c08a93fbbb5f01ec9986cc066dd4497f9c
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
79188ac64074380c3ac5ff8dc32468e73e1c4c4b
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
868d1b66623c20290f87c424a27cbf12220ef1fe
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
848792d60da36dc3cca6e4f98fc26c32ff1ad852
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
ae59bf11fec166fd075b1dbead2ae16effa57e3f
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
96b1fc8e3a982b6f478e363f3919a4a16e0a6a92
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
58caa488fe3cc30f745b9f5079c42141d606436b
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
e0080f861db5b30c0793973e5c4fff7153040ecb
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
bb75c2730c921667652b4589d67bec2246b1f306
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
cde7ba5da9b64cb45bd64c61c6fb2899bbc3e0f2
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.0.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.0.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.0.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.0.3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.1.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.4"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.4.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.5"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.5.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.5.3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.6"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.3.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.3.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.3.1.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.4.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.4.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.5.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.5.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.5.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.6.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.6.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.6.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.7.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.7.0.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.7.0.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.7.0.3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.7.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.7.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.7.3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.6.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.6.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.6.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.6.3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.6.4"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.6.5"
        }
    ]
}
Type
GIT
Repo
https://github.com/cloudfoundry/uaa-release
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
dc291df0c1f79318317ecf588a6846dc9db315c3
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
2a630df6094e20e5c521fb4a0a33a6c501cdffb9
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
9cd6ee5d5b4d07b8924e574feafd93a1327c034b
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "4"
        }
    ]
}

Affected versions

1.*
1.0.1
1.0.3
1.1
1.1.1
1.1.2
1.10
1.11
1.2.0
1.2.6
1.4.0
1.4.1
1.4.2
1.4.3
1.4.5
1.4.6
1.4.7
1.5.0
1.5.2
1.5.2.1
1.5.3
1.5.4
1.5.4.1
1.6.0
1.6.1
1.6.2
1.6.3
1.6.4
1.6.5
1.7.0
1.7.1
1.7.2
1.8.0
1.8.1
1.8.2
1.8.3
1.9.0
1.9.1
2.*
2.0.0
2.0.1
2.0.2
2.0.3
2.1.0
2.2.0
2.2.1
2.2.2
2.2.3
2.2.4
2.2.4.1
2.2.5
2.2.5.2
2.2.5.3
2.2.6
2.3.0
2.3.1
2.3.1.1
2.4.0
2.4.1
2.5.0
2.5.1
2.5.2
2.6.0
2.6.1
2.6.2
2.7.0
2.7.0.1
2.7.0.2
2.7.0.3
2.7.1
2.7.2
2.7.3
Other
lenient_hybrid_flow
travis-success-1475
travis-success-1478
travis-success-1497
v2
v3
v4

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-0732.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "1.6.6"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "1.6.7"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "1.6.8"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "1.6.9"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "1.6.10"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "1.6.11"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "1.6.12"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "1.6.13"
            }
        ]
    }
]