Critical severity9.8NVD Advisory· Published Apr 24, 2019· Updated Jun 17, 2026
CVE-2019-3793
CVE-2019-3793
Description
Pivotal Apps Manager Release, versions 665.0.x prior to 665.0.28, versions 666.0.x prior to 666.0.21, versions 667.0.x prior to 667.0.7, contain an invitation service that accepts HTTP. A remote unauthenticated user could listen to network traffic and gain access to the authorization credentials used to make the invitation requests.
Affected products
2- Range: <665.0.28, <666.0.21, <667.0.7
- Range: 666
Patches
Vulnerability mechanics
References
1- pivotal.io/security/cve-2019-3793nvdVendor Advisory
News mentions
0No linked articles in our index yet.