CVE-2016-0713 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2016-0713

Deferred

More Info Official Page

Source-secalert@redhat.com

Published At-31 Aug, 2017 | 14:29

Updated At-20 Apr, 2025 | 01:37

Gorouter in Cloud Foundry cf-release v141 through v228 allows man-in-the-middle attackers to conduct cross-site scripting (XSS) attacks via vectors related to modified requests.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.0	4.7	MEDIUM	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N
Primary	2.0	2.6	LOW	AV:N/AC:H/Au:N/C:N/I:P/A:N

CPE Matches

>>cf-release>>141

cpe:2.3:a:cloudfoundry:cf-release:141:*:*:*:*:*:*:*

>>cf-release>>142

cpe:2.3:a:cloudfoundry:cf-release:142:*:*:*:*:*:*:*

>>cf-release>>143

cpe:2.3:a:cloudfoundry:cf-release:143:*:*:*:*:*:*:*

>>cf-release>>144

cpe:2.3:a:cloudfoundry:cf-release:144:*:*:*:*:*:*:*

>>cf-release>>145

cpe:2.3:a:cloudfoundry:cf-release:145:*:*:*:*:*:*:*

>>cf-release>>146

cpe:2.3:a:cloudfoundry:cf-release:146:*:*:*:*:*:*:*

>>cf-release>>147

cpe:2.3:a:cloudfoundry:cf-release:147:*:*:*:*:*:*:*

>>cf-release>>148

cpe:2.3:a:cloudfoundry:cf-release:148:*:*:*:*:*:*:*

>>cf-release>>149

cpe:2.3:a:cloudfoundry:cf-release:149:*:*:*:*:*:*:*

>>cf-release>>150

cpe:2.3:a:cloudfoundry:cf-release:150:*:*:*:*:*:*:*

>>cf-release>>151

cpe:2.3:a:cloudfoundry:cf-release:151:*:*:*:*:*:*:*

>>cf-release>>152

cpe:2.3:a:cloudfoundry:cf-release:152:*:*:*:*:*:*:*

>>cf-release>>153

cpe:2.3:a:cloudfoundry:cf-release:153:*:*:*:*:*:*:*

>>cf-release>>154

cpe:2.3:a:cloudfoundry:cf-release:154:*:*:*:*:*:*:*

>>cf-release>>155

cpe:2.3:a:cloudfoundry:cf-release:155:*:*:*:*:*:*:*

>>cf-release>>156

cpe:2.3:a:cloudfoundry:cf-release:156:*:*:*:*:*:*:*

>>cf-release>>157

cpe:2.3:a:cloudfoundry:cf-release:157:*:*:*:*:*:*:*

>>cf-release>>158

cpe:2.3:a:cloudfoundry:cf-release:158:*:*:*:*:*:*:*

>>cf-release>>159

cpe:2.3:a:cloudfoundry:cf-release:159:*:*:*:*:*:*:*

>>cf-release>>160

cpe:2.3:a:cloudfoundry:cf-release:160:*:*:*:*:*:*:*

>>cf-release>>161

cpe:2.3:a:cloudfoundry:cf-release:161:*:*:*:*:*:*:*

>>cf-release>>162

cpe:2.3:a:cloudfoundry:cf-release:162:*:*:*:*:*:*:*

>>cf-release>>163

cpe:2.3:a:cloudfoundry:cf-release:163:*:*:*:*:*:*:*

>>cf-release>>164

cpe:2.3:a:cloudfoundry:cf-release:164:*:*:*:*:*:*:*

>>cf-release>>165

cpe:2.3:a:cloudfoundry:cf-release:165:*:*:*:*:*:*:*

>>cf-release>>166

cpe:2.3:a:cloudfoundry:cf-release:166:*:*:*:*:*:*:*

>>cf-release>>167

cpe:2.3:a:cloudfoundry:cf-release:167:*:*:*:*:*:*:*

>>cf-release>>168

cpe:2.3:a:cloudfoundry:cf-release:168:*:*:*:*:*:*:*

>>cf-release>>169

cpe:2.3:a:cloudfoundry:cf-release:169:*:*:*:*:*:*:*

>>cf-release>>170

cpe:2.3:a:cloudfoundry:cf-release:170:*:*:*:*:*:*:*

>>cf-release>>171

cpe:2.3:a:cloudfoundry:cf-release:171:*:*:*:*:*:*:*

>>cf-release>>172

cpe:2.3:a:cloudfoundry:cf-release:172:*:*:*:*:*:*:*

>>cf-release>>173

cpe:2.3:a:cloudfoundry:cf-release:173:*:*:*:*:*:*:*

>>cf-release>>174

cpe:2.3:a:cloudfoundry:cf-release:174:*:*:*:*:*:*:*

>>cf-release>>175

cpe:2.3:a:cloudfoundry:cf-release:175:*:*:*:*:*:*:*

>>cf-release>>176

cpe:2.3:a:cloudfoundry:cf-release:176:*:*:*:*:*:*:*

>>cf-release>>177

cpe:2.3:a:cloudfoundry:cf-release:177:*:*:*:*:*:*:*

>>cf-release>>178

cpe:2.3:a:cloudfoundry:cf-release:178:*:*:*:*:*:*:*

>>cf-release>>179

cpe:2.3:a:cloudfoundry:cf-release:179:*:*:*:*:*:*:*

>>cf-release>>180

cpe:2.3:a:cloudfoundry:cf-release:180:*:*:*:*:*:*:*

>>cf-release>>181

cpe:2.3:a:cloudfoundry:cf-release:181:*:*:*:*:*:*:*

>>cf-release>>182

cpe:2.3:a:cloudfoundry:cf-release:182:*:*:*:*:*:*:*

>>cf-release>>183

cpe:2.3:a:cloudfoundry:cf-release:183:*:*:*:*:*:*:*

>>cf-release>>184

cpe:2.3:a:cloudfoundry:cf-release:184:*:*:*:*:*:*:*

>>cf-release>>185

cpe:2.3:a:cloudfoundry:cf-release:185:*:*:*:*:*:*:*

>>cf-release>>186

cpe:2.3:a:cloudfoundry:cf-release:186:*:*:*:*:*:*:*

>>cf-release>>187

cpe:2.3:a:cloudfoundry:cf-release:187:*:*:*:*:*:*:*

>>cf-release>>188

cpe:2.3:a:cloudfoundry:cf-release:188:*:*:*:*:*:*:*

>>cf-release>>189

cpe:2.3:a:cloudfoundry:cf-release:189:*:*:*:*:*:*:*

>>cf-release>>190

cpe:2.3:a:cloudfoundry:cf-release:190:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-79	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
https://bosh.io/releases/github.com/cloudfoundry/cf-release?version=229	secalert@redhat.com	Release Notes Third Party Advisory
https://lists.cloudfoundry.org/archives/list/cf-dev%40lists.cloudfoundry.org/thread/VWDLUNTDKW5CW5JWEM5BOHLJ3J32TAFF/	secalert@redhat.com	N/A
https://bosh.io/releases/github.com/cloudfoundry/cf-release?version=229	af854a3a-2127-422b-91ae-364da2661108	Release Notes Third Party Advisory
https://lists.cloudfoundry.org/archives/list/cf-dev%40lists.cloudfoundry.org/thread/VWDLUNTDKW5CW5JWEM5BOHLJ3J32TAFF/	af854a3a-2127-422b-91ae-364da2661108	N/A