CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15762

Pivotal Operations Manager, versions 2.0.x prior to 2.0.24, versions 2.1.x prior to 2.1.15, versions 2.2.x prior to 2.2.7, and versions 2.3.x prior to 2.3.1, grants all users a scope which allows for privilege escalation. A remote malicious user who has been authenticated may create a new client with administrator privileges for Opsman.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.0%

CVSS Severity

CVSS v3 Score 9.0

CVSS v2 Score 6.5

References

Products affected by CVE-2018-15762

Pivotal Software » Operations Manager » Version: 2.0.0

cpe:2.3:a:pivotal_software:operations_manager:2.0.0
Pivotal Software » Operations Manager » Version: 2.0.1

cpe:2.3:a:pivotal_software:operations_manager:2.0.1
Pivotal Software » Operations Manager » Version: 2.0.10

cpe:2.3:a:pivotal_software:operations_manager:2.0.10
Pivotal Software » Operations Manager » Version: 2.0.11

cpe:2.3:a:pivotal_software:operations_manager:2.0.11
Pivotal Software » Operations Manager » Version: 2.0.12

cpe:2.3:a:pivotal_software:operations_manager:2.0.12
Pivotal Software » Operations Manager » Version: 2.0.13

cpe:2.3:a:pivotal_software:operations_manager:2.0.13
Pivotal Software » Operations Manager » Version: 2.0.14

cpe:2.3:a:pivotal_software:operations_manager:2.0.14
Pivotal Software » Operations Manager » Version: 2.0.15

cpe:2.3:a:pivotal_software:operations_manager:2.0.15
Pivotal Software » Operations Manager » Version: 2.0.16

cpe:2.3:a:pivotal_software:operations_manager:2.0.16
Pivotal Software » Operations Manager » Version: 2.0.17

cpe:2.3:a:pivotal_software:operations_manager:2.0.17
Pivotal Software » Operations Manager » Version: 2.0.18

cpe:2.3:a:pivotal_software:operations_manager:2.0.18
Pivotal Software » Operations Manager » Version: 2.0.19

cpe:2.3:a:pivotal_software:operations_manager:2.0.19
Pivotal Software » Operations Manager » Version: 2.0.2

cpe:2.3:a:pivotal_software:operations_manager:2.0.2
Pivotal Software » Operations Manager » Version: 2.0.20

cpe:2.3:a:pivotal_software:operations_manager:2.0.20
Pivotal Software » Operations Manager » Version: 2.0.21

cpe:2.3:a:pivotal_software:operations_manager:2.0.21
Pivotal Software » Operations Manager » Version: 2.0.22

cpe:2.3:a:pivotal_software:operations_manager:2.0.22
Pivotal Software » Operations Manager » Version: 2.0.23

cpe:2.3:a:pivotal_software:operations_manager:2.0.23
Pivotal Software » Operations Manager » Version: 2.0.3

cpe:2.3:a:pivotal_software:operations_manager:2.0.3
Pivotal Software » Operations Manager » Version: 2.0.4

cpe:2.3:a:pivotal_software:operations_manager:2.0.4
Pivotal Software » Operations Manager » Version: 2.0.5

cpe:2.3:a:pivotal_software:operations_manager:2.0.5
Pivotal Software » Operations Manager » Version: 2.0.6

cpe:2.3:a:pivotal_software:operations_manager:2.0.6
Pivotal Software » Operations Manager » Version: 2.0.7

cpe:2.3:a:pivotal_software:operations_manager:2.0.7
Pivotal Software » Operations Manager » Version: 2.0.8

cpe:2.3:a:pivotal_software:operations_manager:2.0.8
Pivotal Software » Operations Manager » Version: 2.0.9

cpe:2.3:a:pivotal_software:operations_manager:2.0.9
Pivotal Software » Operations Manager » Version: 2.1.0

cpe:2.3:a:pivotal_software:operations_manager:2.1.0
Pivotal Software » Operations Manager » Version: 2.1.1

cpe:2.3:a:pivotal_software:operations_manager:2.1.1
Pivotal Software » Operations Manager » Version: 2.1.10

cpe:2.3:a:pivotal_software:operations_manager:2.1.10
Pivotal Software » Operations Manager » Version: 2.1.11

cpe:2.3:a:pivotal_software:operations_manager:2.1.11
Pivotal Software » Operations Manager » Version: 2.1.12

cpe:2.3:a:pivotal_software:operations_manager:2.1.12
Pivotal Software » Operations Manager » Version: 2.1.13

cpe:2.3:a:pivotal_software:operations_manager:2.1.13
Pivotal Software » Operations Manager » Version: 2.1.14

cpe:2.3:a:pivotal_software:operations_manager:2.1.14
Pivotal Software » Operations Manager » Version: 2.1.2

cpe:2.3:a:pivotal_software:operations_manager:2.1.2
Pivotal Software » Operations Manager » Version: 2.1.3

cpe:2.3:a:pivotal_software:operations_manager:2.1.3
Pivotal Software » Operations Manager » Version: 2.1.4

cpe:2.3:a:pivotal_software:operations_manager:2.1.4
Pivotal Software » Operations Manager » Version: 2.1.5

cpe:2.3:a:pivotal_software:operations_manager:2.1.5
Pivotal Software » Operations Manager » Version: 2.1.6

cpe:2.3:a:pivotal_software:operations_manager:2.1.6
Pivotal Software » Operations Manager » Version: 2.1.7

cpe:2.3:a:pivotal_software:operations_manager:2.1.7
Pivotal Software » Operations Manager » Version: 2.1.8

cpe:2.3:a:pivotal_software:operations_manager:2.1.8
Pivotal Software » Operations Manager » Version: 2.1.9

cpe:2.3:a:pivotal_software:operations_manager:2.1.9
Pivotal Software » Operations Manager » Version: 2.2.0

cpe:2.3:a:pivotal_software:operations_manager:2.2.0
Pivotal Software » Operations Manager » Version: 2.2.1

cpe:2.3:a:pivotal_software:operations_manager:2.2.1
Pivotal Software » Operations Manager » Version: 2.2.2

cpe:2.3:a:pivotal_software:operations_manager:2.2.2
Pivotal Software » Operations Manager » Version: 2.2.3

cpe:2.3:a:pivotal_software:operations_manager:2.2.3
Pivotal Software » Operations Manager » Version: 2.2.4

cpe:2.3:a:pivotal_software:operations_manager:2.2.4
Pivotal Software » Operations Manager » Version: 2.2.5

cpe:2.3:a:pivotal_software:operations_manager:2.2.5
Pivotal Software » Operations Manager » Version: 2.2.6

cpe:2.3:a:pivotal_software:operations_manager:2.2.6
Pivotal Software » Operations Manager » Version: 2.3.0

cpe:2.3:a:pivotal_software:operations_manager:2.3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15762

Products

Pricing

Contact Us