EPSS
Percentile
71.5%
UAA is vulnerable to privilege escalation. A malicious user can gain access to the UAA logs and run a specially crafted application that interacts with the SAML provider.
www.securityfocus.com/bid/95085
pivotal.io/security/cve-2016-6659
www.cloudfoundry.org/cve-2016-6659/