Unauthenticated Access Vulnerability in GemFire Broker for Cloud Foundry

Unauthenticated Access Vulnerability in GemFire Broker for Cloud Foundry

CVE-2016-9880 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The GemFire broker for Cloud Foundry 1.6.x before 1.6.5 and 1.7.x before 1.7.1 has multiple API endpoints which do not require authentication and could be used to gain access to the cluster managed by the broker.

Learn more about our Api Penetration Testing.