Bosh Stemcell
Approved changes feed: RSS · Atom
cpe:2.3:a:pivotal:bosh_stemcell:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Pivotal (c2eefbd5-173d-5b7c-b22b-5a5aa11c4b70) |
|---|---|
| Product | Bosh Stemcell (50068b60-d526-5969-bc17-b745e1f1d4b5) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/cloudfoundry/bosh-linux-stemcell-builder |
purl2cpe | 2026-06-01 10:13:44.354377 |
pkg:github/cloudfoundry/bosh-windows-stemcell-builder |
purl2cpe | 2026-06-01 10:13:44.354380 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2016-4435 |
vulnerable | 2026-06-03 14:35:47.964476 |
Details available
An endpoint of the Agent running on the BOSH Director VM with stemcell versions prior to 3232.6 and 3146.13 may allow unauthenticated clients to read or write blobs or cause a denial of service attack on the Director VM. This vulnerability requires that the unauthenticated clients guess or find a URL matching an existing GUID.
Published: 2017-05-25T17:00:00.000Z
Updated: 2024-08-06T00:32:24.614Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.