Cloudfoundry
Security Risk Profile
31
/100
lowSecurity Risk Score
Comprehensive risk assessment based on 110 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from September 18, 2016 to present
110
Total CVEs
72
Critical+High
0
Exploited
53
Unpatched
Threat Assessment
Avg CVSS
7.5
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
53
Critical/High
Risk Level
31/100
low
Severity Distribution
Critical
12High
60Medium
38Low
0Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
0Age Distribution
Common Weaknesses (CWE)
1
Infoleak
10
2
Input Validation
6
3
XSS
6
4
Path Traversal
4
5
CSRF
4
Most Affected Products
1. Pivotal Software Cloud Foundry Uaa364
2. Pivotal Software Cloud Foundry Elastic Runtime321
3. Cloudfoundry Cloud Foundry Uaa Bosh213
4. cloudfoundry Cf-release125
5. Cloudfoundry Cf-release53
Recent Vulnerabilities
See more →CVE-2026-22726
CVSS 5.0medium
Route Services Firewall Bypass
4/30/2026🔧 No Patch
CVE-2026-22723
CVSS 6.5medium
UAA User Token Revocation logic error
3/5/2026
CVE-2025-22246
CVSS 7.5high
– UAA Private Key Exposure
5/13/2025🔧 No Patch
CVE-2024-22279
CVSS 7.5high
GoRouter Denial of Service Attack
6/10/2024🔧 No Patch
CVE-2023-34041
CVSS 5.3medium
9/8/2023🔧 No Patch
CVE-2023-20882
CVSS 5.9medium
5/26/2023🔧 No Patch
CVE-2023-20881
CVSS 8.1high
5/19/2023🔧 No Patch
CVE-2023-20903
CVSS 4.3medium
3/28/2023🔧 No Patch
CVE-2022-31733
CVSS 9.1critical
2/3/2023🔧 No Patch
CVE-2018-25046
CVSS 9.1critical
Path traversal in code.cloudfoundry.org/archiver
12/27/2022
Monitor Cloudfoundry in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.