Critical severity9.8NVD Advisory· Published Sep 18, 2016· Updated May 6, 2026

CVE-2016-0930

Description

Pivotal Cloud Foundry (PCF) Ops Manager before 1.6.19 and 1.7.x before 1.7.10, when vCloud or vSphere is used, has a default password for compilation VMs, which allows remote attackers to obtain SSH access by connecting within an installation-time period during which these VMs exist.

Affected products

Cloudfoundry/Ops Managerinferred
Range: >=1.7,<1.7.10 || <1.6.19
Cloudfoundry/Operations Manager11 versions
cpe:2.3:a:pivotal:operations_manager:*:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:a:pivotal:operations_manager:*:*:*:*:*:*:*:*range: <=1.6.18
- cpe:2.3:a:pivotal:operations_manager:1.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:pivotal:operations_manager:1.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:pivotal:operations_manager:1.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:pivotal:operations_manager:1.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:pivotal:operations_manager:1.7.4:*:*:*:*:*:*:*
- cpe:2.3:a:pivotal:operations_manager:1.7.5:*:*:*:*:*:*:*
- cpe:2.3:a:pivotal:operations_manager:1.7.6:*:*:*:*:*:*:*
- cpe:2.3:a:pivotal:operations_manager:1.7.7:*:*:*:*:*:*:*
- cpe:2.3:a:pivotal:operations_manager:1.7.8:*:*:*:*:*:*:*
- cpe:2.3:a:pivotal:operations_manager:1.7.9:*:*:*:*:*:*:*
Pivot/Pivotllm-fuzzy
Range: <1.6.19, >=1.7.0 <1.7.10

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

pivotal.io/security/cve-2016-0930nvdVendor Advisory
www.securityfocus.com/bid/93027nvd

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000