CVE Tools

pivotal

Cloud & SaaSUScommercial

63

Cumulative CVEs

14

Monthly snapshots

#22

Peak rank

Top products

spring framework2 spring cloud function1 spring security oauth1

Latest CVEs

The 15 most recently published vulnerabilities affecting pivotal.

CVE-2023-34061CVE-2023-34061 – Gorouter route pruning7.5Jan 12, 2024
CVE-2023-34054Reactor Netty HTTP Server Metrics DoS Vulnerability5.3Nov 28, 2023
CVE-2023-34062In Reactor Netty HTTP Server, versions 1.1.x prior to 1.1.13 and versions 1.0.x prior to 1.0.39, a malicious user can send a request using a specially crafted URL that can lead to a directory trave...7.5Nov 15, 2023
CVE-2023-20885CF workflows leak credentials in system audit logs6.5Jun 16, 2023
CVE-2022-31684Reactor Netty HTTP Server, in versions 1.0.11 - 1.0.23, may log request headers in some cases of invalid HTTP requests. The logged headers may reveal valid access tokens to those with access to ser...4.3Oct 19, 2022
CVE-2022-22969<Issue Description> Spring Security OAuth versions 2.5.x prior to 2.5.2 and older unsupported versions are susceptible to a Denial-of-Service (DoS) attack via the initiation of the Authorization Re...6.5Apr 21, 2022
CVE-2020-5409Concourse Open Redirect in the /sky/login endpoint6.1May 13, 2020
CVE-2020-5406PCF Autoscaling logs its database credentials6.5Apr 10, 2020
CVE-2019-19023Cloud Native Computing Foundation Harbor prior to 1.8.6 and 1.9.3 has a Privilege Escalation Vulnerability in the VMware Harbor Container Registry for the Pivotal Platform.8.8Mar 20, 2020
CVE-2019-19029Cloud Native Computing Foundation Harbor prior to 1.8.6 and 1.9.3 allows SQL Injection via user-groups in the VMware Harbor Container Registry for the Pivotal Platform.7.2Mar 20, 2020
CVE-2019-19026Cloud Native Computing Foundation Harbor prior to 1.8.6 and 1.9.3 allows SQL Injection via project quotas in the VMware Harbor Container Registry for the Pivotal Platform.4.9Mar 20, 2020
CVE-2019-19025Cloud Native Computing Foundation Harbor prior to 1.8.6 and 1.9.3 allows CSRF in the VMware Harbor Container Registry for the Pivotal Platform.8.8Mar 20, 2020
CVE-2020-5403DoS Via Malformed URL with Reactor Netty HTTP Server7.5Mar 3, 2020
CVE-2020-5404Authentication Leak On Redirect With Reactor Netty HttpClient5.9Mar 3, 2020
CVE-2019-11288tcServer JMX Socket Listener Registry Rebinding Local Privilege Escalation7.0Jan 27, 2020