Where
-Infinity
0

Trending

Last week
Last month
Last year

Cloud Foundry routing-releaseRoute Services Firewall Bypass

Risk 26
Severity
5
First published (updated )
CVE-2026-22726

cloudfoundry/uaaUAA User Token Revocation logic error

Risk 38
Severity
6.5
First published (updated )
CVE-2026-22723

Cloud Foundry UAA– UAA Private Key Exposure

Risk 43
Severity
7.5
First published (updated )
CVE-2025-22246

Cloudfoundry Cf-deploymentGoRouter Denial of Service Attack

Risk 43
Severity
7.5
First published (updated )
CVE-2024-22279

Cloudfoundry Cf-deploymentCloud foundry routing release versions prior to 0.278.0 are vulnerable to abuse of HTTP Hop-by-Hop H…

Risk 27
Severity
5.3
First published (updated )
CVE-2023-34041
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Cloudfoundry Cf-deploymentIn Cloud foundry routing release versions from 0.262.0 and prior to 0.266.0,a bug in the gorouter pr…

Risk 35
Severity
5.9
First published (updated )
CVE-2023-20882

Cloudfoundry Capi-releaseCloud foundry instances having CAPI version between 1.140 and 1.152.0 along with loggregator-agent v…

Risk 60
Severity
8.1
First published (updated )
CVE-2023-20881

Cloudfoundry Cf-deploymentStarting with diego-release 2.55.0 and up to 2.69.0, and starting with CF Deployment 17.1 and up to …

Risk 66
Severity
9.1
First published (updated )
CVE-2022-31733

Cloudfoundry Capi-releaseIn cloud foundry CAPI versions prior to 1.122, a denial-of-service attack in which a developer can p…

Risk 27
Severity
5.3
First published (updated )
CVE-2021-22100

Cloudfoundry Capi-releaseCloud Controller versions prior to 1.118.0 are vulnerable to unauthenticated denial of Service(DoS) …

Risk 43
Severity
7.5
First published (updated )
CVE-2021-22101
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Cloudfoundry Cf-deploymentUAA server versions prior to 75.4.0 are vulnerable to an open redirect vulnerability. A malicious us…

Risk 38
Severity
6.1
First published (updated )
CVE-2021-22098

Cloudfoundry Cf-deploymentInfoleak

Risk 43
Severity
7.5
First published (updated )
CVE-2021-22001

Cloudfoundry Capi-releaseCloud Controller API versions prior to 1.106.0 logs service broker credentials if the default value …

Risk 38
Severity
6.5
First published (updated )
CVE-2021-22115

Cloudfoundry Capi-releaseCloud Controller is vulnerable to denial of service via YAML parsing

Risk 44
Severity
7.8
First published (updated )
CVE-2020-5423

Cloudfoundry Cf-deploymentGorouter is vulnerable to DoS attack via invalid HTTP responses

Risk 44
Severity
7.7
First published (updated )
CVE-2020-5420
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Cloudfoundry Capi-releaseCloud Controller allows users with no roles to list droplets

Risk 22
Severity
4.3
First published (updated )
CVE-2020-5418

Cloudfoundry Capi-releaseCloud Controller may allow developers to claim sensitive routes

Risk 79
Severity
8.8
First published (updated )
CVE-2020-5417

Cloudfoundry Cf-deploymentCF clusters with NGINX in front of them may be vulnerable to DoS

Risk 44
Severity
7.7
First published (updated )
CVE-2020-5416

redhat/openshiftRace Condition

Risk 45
Severity
7.5
First published (updated )
CVE-2020-15586

Cloudfoundry Cf-deploymentUAA fails to check the state parameter when authenticating with external IDPs

Risk 77
Severity
8.8
First published (updated )
CVE-2020-5402
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Cloudfoundry Capi-releaseCloud Controller logs environment variables from app manifests

Risk 67
Severity
8
First published (updated )
CVE-2020-5400

Cloudfoundry Capi-releaseCAPI leaks service broker URLs and GUIDs to space developers

Risk 22
Severity
4.3
First published (updated )
CVE-2019-11294

Cloudfoundry Cf-deploymentUAA logs all query parameters with debug logging level

Risk 79
Severity
8.8
First published (updated )
CVE-2019-11293

Cloudfoundry Cf-deploymentCloud Foundry UAA logs query parameters in tomcat access file

Risk 79
Severity
8.8
First published (updated )
CVE-2019-11290

go/code.cloudfoundry.org/gorouterA forged route service request using an invalid nonce can cause the gorouter to panic and crash

Risk 51
Severity
8.6
First published (updated )
CVE-2019-11289
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Cloudfoundry Cf-deploymentPassword leak in smbdriver logs

Risk 79
Severity
8.8
First published (updated )
CVE-2019-11283

Cloudfoundry Cf-deploymentUAA is vulnerable to a Blind SCIM injection leading to information disclosure

Risk 22
Severity
4.3
First published (updated )
CVE-2019-11282

Cloudfoundry Nfs Volume ReleaseVolume Services is vulnerable to an LDAP injection attack

Risk 69
Severity
8.4
First published (updated )
CVE-2019-11277

Cloudfoundry CredhubJava Projects using HTTP to fetch dependencies

Risk 86
Severity
9.8
First published (updated )
CVE-2019-3801

Cloudfoundry Cf-deploymentMalicious File Upload

Risk 66
Severity
7.2
First published (updated )
CVE-2018-1265
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203