Notable Vulnerabilities in Dependencies (USNs) and legacy VMware Tanzu advisories

This page lists the legacy VMware Tanzu Vulnerability Reports. Starting in 2021, advisories documenting security vulnerabilities in VMware Tanzu products are continued on the VMware Security Advisories page. Information regarding open source vulnerabilities that are addressed in Tanzu products is present in the release notes of Tanzu products.

This page continues to list Spring advisories and USNs. Advisories pertaining to open source projects sponsored by VMware—apart from Spring—may be found in their GitHub repositories.

Reporting a vulnerability

The VMware Security Response team provides a single point of contact for the reporting of security vulnerabilities in VMware Tanzu products and coordinates the process of investigating any reported vulnerabilities.

To report a security vulnerability in a VMware service or product please refer to the VMware Security Response Policy.

VMware Tanzu Vulnerability Reports

Date	CVE Reference	Description
20 6월 2022	CVE-2022-22980	Spring Data MongoDB SpEL Expression injection vulnerability through annotated repository query methods
15 6월 2022	CVE-2022-22979	Spring Cloud Function Dos Vulnerability
17 5월 2022	CVE-2022-22976	BCrypt skips salt rounds for work factor of 31
16 5월 2022	CVE-2022-22978	Authorization Bypass in RegexRequestMatcher
11 5월 2022	CVE-2022-22971	Spring Framework DoS with STOMP over WebSocket
11 5월 2022	CVE-2022-22970	Spring Framework DoS via Data Binding to MultipartFile or Servlet Part
21 4월 2022	CVE-2022-22969	Denial-of-Service (DoS) in spring-security-oauth2
13 4월 2022	CVE-2022-22968	Spring Framework Data Binding Rules Vulnerability
31 3월 2022	CVE-2022-22965	Spring Framework RCE via Data Binding on JDK 9+
29 3월 2022	CVE-2022-22963	Remote code execution in Spring Cloud Function by malicious Spring Expression
28 3월 2022	CVE-2022-22950	Spring Expression DoS Vulnerability
01 3월 2022	CVE-2022-22947	Spring Cloud Gateway Code Injection Vulnerability
01 3월 2022	CVE-2022-22946	Spring Cloud Gateway HTTP2 Insecure TrustManager
05 1월 2022	CVE-2021-22060	Additional Log Injection in Spring Framework (follow-up to CVE-2021-22096)
29 11월 2021	CVE-2021-22095	Spring-AMQP Remote Denial of Service - Out of Memory Error with a Large Message Body
17 11월 2021	CVE-2021-22053	Spring Cloud Netflix Hystrix Dashboard template resolution vulnerability
04 11월 2021	CVE-2021-22051	Spring Cloud Gateway Request Vulnerability
26 10월 2021	CVE-2021-22096	Log Injection in Spring Framework
26 10월 2021	CVE-2021-22097	Spring-AMQP Remote Denial of Service - Deserialization of a Maliciously Constructed java.util.Dictionary Object
26 10월 2021	CVE-2021-22047	Potential Security Bypass for customized Spring Data REST Resource
26 10월 2021	CVE-2021-22044	Spring Cloud OpenFeign Client Endpoint Exposure
28 6월 2021	CVE-2021-22119	Denial-of-Service (DoS) attack via initiation of Authorization Request in Spring Security OAuth 2.0 Client Web and WebFlux Application
25 5월 2021	CVE-2021-22118	Local Privilege Escalation within Spring Webflux Multipart Request Handling
10 5월 2021	CVE-2021-22117	RabbitMQ Sever vulnerable to arbitrary code execution attack
10 5월 2021	CVE-2021-22116	Denial-of-Service Vulnerability due to improper input validation in RabbitMQ server
26 2월 2021	CVE-2021-22114	Zip-slip mitigation bypass in Spring Integration Zip extension
19 2월 2021	CVE-2021-22112	Changing SecurityContext More Than Once in Single Request Can Fail to Save
11 2월 2021	CVE-2021-22113	Spring Cloud Netflix Zuul “Sensitive Headers” Bypass Vulnerability
25 1월 2021	CVE-2020-5428	Possibility of SQL Injection in Spring Cloud Task Execution Sorting Query
25 1월 2021	CVE-2020-5427	Possibility of SQL Injection in Spring Cloud Data Flow Task Execution Sorting Query
01 12월 2020	CVE-2020-5423	Cloud Controller is vulnerable to denial of service via YAML parsing
16 11월 2020	CVE-2020-5417	Cloud Controller may allow developers to claim sensitive routes
12 11월 2020	CVE-2020-5422	UAA password may appear in Operations Manager process arguments
03 11월 2020	CVE-2020-5426	Scheduler for TAS can transmit privileged UAA token in plaintext
29 10월 2020	CVE-2020-5425	User Impersonation possible in Tanzu SSO
13 10월 2020	MYSQL-SECURITY-UPDATES-APR2020	Various MySQL Security Updates from April 2020
13 10월 2020	MYSQL-SECURITY-UPDATES-JAN2020	Various MySQL Security Updates from January 2020
17 9월 2020	CVE-2020-5421	RFD Protection Bypass via jsessionid
10 9월 2020	CVE-2020-5420	Gorouter is vulnerable to DoS attack via invalid HTTP responses
01 9월 2020	CVE-2020-5416	TAS clusters with NGINX in front of them may be vulnerable to DoS
27 8월 2020	CVE-2020-5419	RabbitMQ arbitrary code execution using local binary planting
11 8월 2020	CVE-2020-5415	Concourse's GitLab auth allows impersonation
04 8월 2020	CVE-2020-5412	Hystrix Dashboard Proxy In spring-cloud-netflix-hystrix-dashboard
30 7월 2020	CVE-2020-5414	App Autoscaler logs credentials
30 7월 2020	CVE-2020-5396	JMX Insecure Default Configuration in GemFire
30 7월 2020	MYSQL-SECURITY-UPDATES-OCT2019	Various MySQL Security Updates from October 2019
30 7월 2020	MYSQL-SECURITY-UPDATES-JUL2019	Various MySQL Security Updates from July 2019
30 7월 2020	CVE-2019-11286	JMX Credential Deserialization in GemFire
23 7월 2020	CVE-2020-5413	Kryo Configuration Allows Code Execution with Unknown “Serialization Gadgets”
16 7월 2020	CVE-2020-15586	Gorouter is vulnerable to DoS Attack via Expect 100-continue requests
10 6월 2020	CVE-2020-5411	Jackson Configuration Allows Code Execution with Unknown “Serialization Gadgets”
01 6월 2020	CVE-2020-5410	Directory Traversal with spring-cloud-config-server
26 5월 2020	CVE-2019-15605	Node.js is vulnerable to request smuggling
13 5월 2020	CVE-2020-5409	Concourse Open Redirect in the /sky/login endpoint
07 5월 2020	CVE-2020-5408	Dictionary attack with Spring Security queryable text encryptor
07 5월 2020	CVE-2020-5407	Signature Wrapping Vulnerability with spring-security-saml2-service-provider
14 4월 2020	CVE-2020-5402	UAA fails to check the state parameter when authenticating with external IDPs
09 4월 2020	CVE-2020-5406	PCF Autoscaling logs its database credentials
06 4월 2020	CVE-2019-11282	UAA is vulnerable to a Blind SCIM injection leading to information disclosure
06 4월 2020	CVE-2020-5400	Cloud Controller logs environment variables from app manifests
04 3월 2020	CVE-2019-11290	UAA logs query parameters in tomcat access file
04 3월 2020	VARIOUS-JACKSON-CVES-UAA	Various CVEs UAA consumes vulnerable versions of FasterXML jackson-databind
03 3월 2020	CVE-2019-11253	PKS is vulnerable to a YAML/JSON parsing "Billion Laughs" Attack
27 2월 2020	CVE-2020-5404	Authentication Leak On Redirect With Reactor Netty HttpClient
27 2월 2020	CVE-2020-5403	DoS Via Malformed URL with Reactor Netty HTTP Server
26 2월 2020	CVE-2020-5405	Directory Traversal with spring-cloud-config-server
24 2월 2020	CVE-2020-5401	GoRouter is vulnerable to a cache poisoning DoS
12 2월 2020	CVE-2020-5399	CredHub does not properly enable TLS for MySQL database connections
11 2월 2020	CVE-2019-19604	Git submodule loading vulnerability
16 1월 2020	CVE-2020-5398	RFD Attack via “Content-Disposition” Header Sourced from Request Input by Spring MVC or Spring WebFlux Application
16 1월 2020	CVE-2020-5397	CSRF Attack via CORS Preflight Requests with Spring MVC or Spring WebFlux
15 1월 2020	CVE-2019-11288	tc Server JMX Socket Listener Registry Rebinding Local Privilege Escalation
10 1월 2020	CVE-2019-18802	CVE-2019-18801, CVE-2019-18838, MySQL for Pivotal Platform consumes a vulnerable version of Envoy
08 1월 2020	CVE-2019-11292	Ops Manager logs query parameters in tomcat access file
04 12월 2019	CVE-2019-9517	CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9518, CVE-2019-9511, CVE-2019-9516, Some Pivotal products are impacted by HTTP/2 denial of service attacks
04 12월 2019	CVE-2019-19029	SQL Injection via user-groups in VMware Harbor Container Registry for Pivotal Platform
04 12월 2019	CVE-2019-19026	SQL Injection via project quotas in VMware Harbor Container Registry for Pivotal Platform
04 12월 2019	CVE-2019-19025	Cross-Site Request Forgery Vulnerability in VMware Harbor Container Registry for Pivotal Platform
04 12월 2019	CVE-2019-19023	Privilege Escalation Vulnerability in VMware Harbor Container Registry for Pivotal Platform
04 12월 2019	CVE-2019-3990	User Enumeration Flaw in VMware Harbor Container Registry for Pivotal Platform
03 12월 2019	CVE-2019-11293	UAA logs all query parameters with debug logging level
22 11월 2019	CVE-2019-11287	RabbitMQ Web Management Plugin DoS via heap overflow
22 11월 2019	CVE-2019-11291	RabbitMQ XSS attack via federation and shovel endpoints
18 11월 2019	CVE-2019-11289	A forged route service request using an invalid nonce can cause the gorouter to panic and crash
06 11월 2019	CVE-2019-9893	libseccomp incorrectly generate 64-bit syscall argument comparisons
28 10월 2019	CVE-2019-16869	Reactor Netty Consumes a Vulnerable Version of Netty
24 10월 2019	CVE-2019-11249	PKS consumes a vulnerable version of kubectl
23 10월 2019	CVE-2019-11283	Password leak in smbdriver logs
17 10월 2019	CVE-2019-16919	Broken access control vulnerability in Harbor API
15 10월 2019	CVE-2019-11278	Privilege Escalation via Blind SCIM Injection in UAA
15 10월 2019	CVE-2019-11279	Privilege Escalation via Scope Manipulation in UAA
15 10월 2019	CVE-2019-11247	Kubernetes API Server Vulnerability
15 10월 2019	CVE-2018-15664	Docker Symlink Directory Traversal Vulnerability
15 10월 2019	CVE-2019-13139	Docker build code execution
14 10월 2019	CVE-2019-11281	RabbitMQ XSS attack
11 10월 2019	CVE-2019-11284	Reactor Netty authentication leak in redirects
25 9월 2019	CVE-2019-11275	CSV Injection in usage report downloaded from Pivotal Application Manager
23 9월 2019	CVE-2019-11277	Volume Services is vulnerable to an LDAP injection attack
19 9월 2019	CVE-2019-11280	Privilege escalation through the invitations service
20 8월 2019	CVE-2019-3775	UAA allows users to modify their own email address
20 8월 2019	CVE-2019-3788	UAA redirect-uri allows wildcards in the subdomain
20 8월 2018	CVE-2019-3787	UAA defaults email address to an insecure domain
20 8월 2019	CVE-2019-10164	Critical Security Issue in PostgreSQL
19 8월 2019	CVE-2019-11276	Apps Manager sends tokens to Spring apps via HTTP
15 8월 2019	CVE-2017-15694	Pivotal GemFire and Cloud Cache consume vulnerable versions of Apache Geode
14 8월 2019	CVE-2019-13232	ClamAV Add-on for PCF consumes a vulnerable version of ClamAV
01 8월 2019	CVE-2019-11270	UAA clients.write vulnerability
25 7월 2019	CVE-2019-3800	CF CLI writes the client id and secret to config file
25 7월 2019	CVE-2019-3781	CF CLI does not sanitize user's password in verbose/trace/debug
23 7월 2019	CVE-2019-11273	PKS Telemetry logs credentials
22 7월 2019	VARIOUS-SQL	Various MySQL Security Updates from July 2018 through January 2019
22 7월 2019	USN-4017-1	Linux kernel vulnerabilities
18 7월 2019	CVE-2019-3786	BBR could run arbitrary scripts on deployment VMs
28 6월 2019	CVE-2019-11271	Bosh Deployment logs leak sensitive information
19 6월 2019	CVE-2019-11272	PlaintextPasswordEncoder authenticates encoded passwords that are null
30 5월 2019	CVE-2019-5021	Tile generator affected by insecure default password
30 5월 2019	CVE-2019-11269	Open Redirector in spring-security-oauth2
24 5월 2019	CVE-2019-3790	Ops Manager uaa client issues tokens after refresh token expiration
13 5월 2019	CVE-2019-3802	Additional information exposure with Spring Data JPA example matcher
25 4월 2019	CVE-2019-3801	Java Projects using HTTP to fetch dependencies
24 4월 2019	CVE-2019-3798	Escalation of Privileges in Cloud Controller
24 4월 2019	CVE-2019-3789	Gorouter allows space developer to hijack route services hosted outside the platform
16 4월 2019	CVE-2019-3799	Directory Traversal with spring-cloud-config-server
12 4월 2019	CVE-2019-3793	Invitations Service supports HTTP connections
08 4월 2019	CVE-2019-3797	Additional information exposure with Spring Data JPA derived queries
04 4월 2019	CVE-2019-3795	Insecure Randomness When Using a SecureRandom Instance Constructed by Spring Security
01 4월 2019	CVE-2019-9946	Kubernetes affecting certain network configurations with CNI
01 4월 2019	CVE-2019-1002100	Kubernetes API Server Patch Request Consumes Excess Resource Cause Denial of Service
01 4월 2019	CVE-2019-1002101	Kubernetes kubectl - potential directory traversal
25 3월 2019	CVE-2019-3792	Concourse 5.0.0 SQL Injection vulnerability
07 3월 2019	CVE-2019-8331	Bootstrap XSS
28 2월 2019	CVE-2018-15754	UAA issues tokens across identity providers if users with matching usernames exist
26 2월 2019	CVE-2019-3777	Apps Manager unverified SSL certs in Cloud Controller proxy
21 2월 2019	CVE-2019-3778	Open Redirector in spring-security-oauth2
19 2월 2019	CVE-2019-3776	Reflected XSS in Pivotal Operations Manager
14 2월 2019	CVE-2019-3780	Cloud Foundry Container Runtime Leaks IAAS Credentials
14 2월 2019	CVE-2019-3779	Pivotal Container Service allows a user to bypass security policy when talking to ETCD
14 1월 2019	CVE-2019-3772	XML External Entity Injection (XXE)
14 1월 2019	CVE-2019-3773	XML External Entity Injection (XXE)
14 1월 2019	CVE-2019-3774	XML External Entity Injection (XXE)
08 1월 2019	KUBERNETES-API-SERVER	Kubernetes API Server acts as proxy for internal and external IPs
08 1월 2019	CVE-2019-3803	Concourse includes token in CLI authentication callback
04 1월 2019	CVE-2018-18264	Kubernetes Dashboard TLS Certificate Leak
18 12월 2018	CVE-2018-15801	Authorization Bypass During JWT Issuer Validation with spring-security
13 12월 2018	CVE-2018-15798	Pivotal Concourse allows malicious redirect urls on login
05 12월 2018	CVE-2018-1279	RabbitMQ cluster compromise due to deterministically generated cookie
15 11월 2018	CVE-2018-15759	On Demand Services SDK Timing Attack Vulnerability
09 11월 2018	CVE-2018-15795	CredHub Service Broker uses guessable client secret
29 10월 2018	CVE-2018-15762	Pivotal Operations Manager gives all users heightened privileges
16 10월 2018	CVE-2018-15758	Privilege Escalation in spring-security-oauth2
16 10월 2018	CVE-2018-15756	DoS Attack via Range Requests
10 10월 2018	CVE-2018-11084	Garden-runC prevents deletion of some app environments
10 10월 2018	CVE-2018-15755	CF networking internal policy server SQL injection
03 10월 2018	CVE-2018-11083	BOSH accepts refresh token as access token
02 10월 2018	CVE-2018-15763	PKS leaks IaaS credentials to application logs
27 9월 2018	CVE-2018-11081	Ops Manager writes UAA credentials to disk
13 9월 2018	CVE-2018-1198	PCC bosh deployment logs print a superuser password in plain text
13 9월 2018	CVE-2018-11088	CF admin credentials accessible to developers through Applications Manager
13 9월 2018	CVE-2018-11086	CF admin credentials accessible to developers through usage service
11 9월 2018	CVE-2018-11087	RabbitMQ (Spring-AMQP) Host name verification
23 7월 2018	CVE-2018-11044	Apps Manager allows unescaped content in invitation emails
10 7월 2018	CVE-2018-11045	Operations Manager image contains static LRNG seed file
20 6월 2018	CVE-2018-11046	Operations Manager includes outdated NGINX packages
14 6월 2018	CVE-2018-11040	JSONP enabled by default in MappingJackson2JsonView
14 6월 2018	CVE-2018-11039	Cross Site Tracing (XST) with Spring Framework
11 5월 2018	CVE-2018-1263	Unsafe Unzip with spring-integration-zip
10 5월 2018	CVE-2018-1278	Apps Manager allows unauthorized org invitations
09 5월 2018	CVE-2018-1261	Unsafe Unzip with spring-integration-zip
09 5월 2018	CVE-2018-1260	Remote Code Execution with spring-security-oauth2
09 5월 2018	CVE-2018-1259	XXE with Spring Data’s XMLBeam integration
09 5월 2018	CVE-2018-1258	Unauthorized Access with Spring Security Method Security
09 5월 2018	CVE-2018-1257	ReDoS Attack with spring-messaging
07 5월 2018	CVE-2018-1280	Blind SQL injection in Pivotal Greenplum Command Center
30 4월 2018	CVE-2018-1256	Issuer validation regression in Spring Cloud SSO Connector
10 4월 2018	CVE-2018-1274	Denial of Service with Spring Data
10 4월 2018	CVE-2018-1273	RCE with Spring Data Commons
09 4월 2018	CVE-2018-1275	Address partial fix for CVE-2018-1270
05 4월 2018	CVE-2018-1272	Multipart Content Pollution with Spring Framework
05 4월 2018	CVE-2018-1271	Directory Traversal with Spring MVC on Windows
05 4월 2018	CVE-2018-1270	Remote Code Execution with spring-messaging
16 3월 2018	CVE-2018-1230	Spring Batch Admin vulnerable to Cross Site Request Forgery
16 3월 2018	CVE-2018-1229	Stored XSS in file upload of Spring Batch Admin
13 2월 2018	CVE-2018-1200	Apps Manager File Access Vulnerability
30 1월 2018	CVE-2018-1196	Symlink privilege escalation attack via Spring Boot launch script
29 1월 2018	CVE-2018-1199	Security bypass with static resources
16 10월 2017	CVE-2017-8028	Spring-LDAP authentication with userSearch and STARTTLS allows authentication with arbitrary password
21 9월 2017	CVE-2017-8046	RCE in PATCH requests in Spring Data REST
19 9월 2017	CVE-2017-8045	Remote code execution in spring-amqp
15 9월 2017	CVE-2017-8039	Data Binding Expression Vulnerability in Spring Web Flow
31 8월 2017	CVE-2017-8044	XSS vulnerability in Single Sign-On for PCF via DOM-based query parameters
31 8월 2017	CVE-2017-8041	XSS vulnerability in org name in Single Sign-On for PCF
31 8월 2017	CVE-2017-8040	XXE Vulnerability in Single Sign-On for PCF
08 6월 2017	CVE-2017-4995	Jackson Configuration Allows Code Execution with Unknown “Serialization Gadgets”
31 5월 2017	CVE-2017-4971	Data Binding Expression Vulnerability in Spring Web Flow
15 5월 2017	CVE-2017-4975	Tile generator sets open security groups
04 5월 2017	CVE-2017-4966	RabbitMQ local storage of credentials
04 5월 2017	CVE-2017-4965	XSS vulnerabilities in RabbitMQ management UI
27 3월 2017	CVE-2017-2773	Unauthenticated JWT signing algorithm in multiple components
24 3월 2017	CVE-2017-4955	Credentials in Elastic Runtime Notifications errand log
14 2월 2017	CVE-2017-4959	Pivotal Cloud Foundry account authorization vulnerability
09 2월 2017	CVE-2016-9880	Unauthenticated access to GemFire for PCF broker endpoints
04 1월 2017	CVE-2016-9885	gfsh exposed over go router for GemFire for PCF
28 12월 2016	CVE-2016-9879	Encoded "/" in path variables
28 12월 2016	CVE-2016-0898	Service backups log AWS key
21 12월 2016	CVE-2016-9878	Directory Traversal in the Spring Framework ResourceServlet
19 12월 2016	CVE-2016-9877	RabbitMQ authentication vulnerability
31 10월 2016	CVE-2016-6657	PCF Open Redirects
31 10월 2016	CVE-2016-6656	Code injection vulnerability via GPHDFS in Greenplum database
30 9월 2016	CVE-2016-6652	Spring Data JPA Blind SQL Injection Vulnerability
12 9월 2016	CVE-2016-0930	Ops Manager Compilation VMs Vulnerability on vSphere and vCloud
27 7월 2016	CVE-2016-0896	IaaS Metadata Endpoint Accessible from Application Containers
15 7월 2016	CVE-2016-0929	RabbitMQ for PCF vulnerability
07 7월 2016	CVE-2016-5007	Spring Security / MVC Path Matching Inconsistency
07 7월 2016	CVE-2016-0926	Apps Manager XSS vulnerability
05 7월 2016	CVE-2016-4977	Remote Code Execution (RCE) in Spring Security OAuth
29 6월 2016	CVE-2016-0928	PCF Open Redirects
24 6월 2016	CVE-2016-0897	Ops Manager vSphere and vCloud vulnerability
23 6월 2016	CVE-2016-0927	Ops Manager XSS vulnerability
11 4월 2016	CVE-2016-2173	Remote Code Execution in Spring AMQP
23 3월 2016	CVE-2016-0780	Cloud Controller Disk Quota Enforcement
23 3월 2016	CVE-2016-2165	Loggregator Request URL Paths
23 3월 2016	CVE-2016-0781	UAA Persistent XSS Vulnerability
03 2월 2016	CVE-2016-0883	Pivotal Ops Manager Weak Authentication Scheme
12 11월 2015	CVE-2015-5258	Spring Social CSRF
15 10월 2015	CVE-2015-5211	RFD Attack in Spring Framework
30 6월 2015	CVE-2015-3192	DoS Attack with XML Input
06 3월 2015	CVE-2015-0201	Insufficiently random session id in Java SockJS client
13 1월 2015	CVE-2014-3626	Directory Traversal in Grails Resources Plugin
11 11월 2014	CVE-2014-3625	Directory Traversal in Spring Framework
05 9월 2014	CVE-2014-3578	Directory Traversal in Spring Framework
15 8월 2014	CVE-2014-3527	Access Control Bypass in Spring Security
28 5월 2014	CVE-2014-0225	Information Disclosure when using Spring MVC
11 3월 2014	CVE-2014-1904	XSS when using Spring MVC
11 3월 2014	CVE-2014-0097	Blank password may bypass user authentication
11 3월 2014	CVE-2014-0054	Incomplete fix for CVE-2013-7315 / CVE-2013-6429 (XXE)
19 2월 2014	CVE-2014-0053	Information Disclosure when using Grails
14 1월 2014	CVE-2013-6430	Possible XSS when using Spring MVC
14 1월 2014	CVE-2013-6429	Incomplete fix for CVE-2013-7315 (XXE)
22 8월 2013	CVE-2013-7315	XML External Entity (XXE) injection in Spring Framework
22 8월 2013	CVE-2013-4152	XML eXternal Entity (XXE) injection in Spring Framework

모두 보기