Vulnerabilities > Pivotal Software > Operations Manager > 2.0.4

DATE CVE VULNERABILITY TITLE RISK
2018-11-02 CVE-2018-15762 Improper Privilege Management vulnerability in Pivotal Software Operations Manager
Pivotal Operations Manager, versions 2.0.x prior to 2.0.24, versions 2.1.x prior to 2.1.15, versions 2.2.x prior to 2.2.7, and versions 2.3.x prior to 2.3.1, grants all users a scope which allows for privilege escalation.
network
low complexity
pivotal-software CWE-269
6.5
6.5
2018-10-05 CVE-2018-11081 Unspecified vulnerability in Pivotal Software Operations Manager
Pivotal Operations Manager, versions 2.2.x prior to 2.2.1, 2.1.x prior to 2.1.11, 2.0.x prior to 2.0.16, and 1.11.x prior to 2, fails to write the Operations Manager UAA config onto the temp RAM disk, thus exposing the configs directly onto disk.
network
low complexity
pivotal-software
4.0
4.0
2018-07-11 CVE-2018-11045 Use of Insufficiently Random Values vulnerability in Pivotal Software Operations Manager
Pivotal Operations Manager, versions 2.1 prior to 2.1.6 and 2.0 prior to 2.0.15 and 1.12 prior to 1.12.22, contains a static Linux Random Number Generator (LRNG) seed file embedded in the appliance image. 		4.3
4.3