yes, there has been a typo. Thank you for pointing out !
The correct CVE number is : *CVE-2016-3084*



Thanks,
Sree Tummidi
Sr. Product Manager
Identity - Pivotal Cloud Foundry


On Mon, May 23, 2016 at 10:05 AM, Graham Bleach <
graham.bleach(a)digital.cabinet-office.gov.uk> wrote:

Hi Chip,

On 23 May 2016 at 17:00, Chip Childers <cchilders(a)cloudfoundry.org> wrote:

CVE-2016-0781 UAA Password Reset Vulnerability

I think there might be a typo here as the CVE reference seems to be
the same as for the UAA persistent XSS vulnerability.

G