Where
-Infinity
0

Trending

Last week
Last month
Last year

Cloudfoundry Cf-deploymentUAA is vulnerable to a Blind SCIM injection leading to information disclosure

Risk 22
Severity
4.3
First published (updated )
CVE-2019-11282

Pivotal Software Cloud Foundry Uaa-releaseUAA SQL Identity Zone Vulnerability

Risk 38
Severity
6.5
First published (updated )
CVE-2019-11268

Pivotal Software Cloud Foundry Uaa-releaseUAA defaults email address to an insecure domain

Risk 77
Severity
8.8
First published (updated )
CVE-2019-3787

Pivotal Software Cloud Foundry Uaa-releaseUAA can issue tokens across identity providers if users with matching usernames exist

Risk 79
Severity
8.8
First published (updated )
CVE-2018-15754

maven/org.cloudfoundry.identity:cloudfoundry-identity-serverUAA Privilege Escalation

Risk 86
Severity
9.9
First published (updated )
CVE-2018-15761
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Pivotal Software Cloudfoundry UaaCloud Foundry UAA MFA does not prevent brute force of MFA code

Risk 86
Severity
9.8
First published (updated )
CVE-2018-11082

maven/org.cloudfoundry.identity:cloudfoundry-identity-serverCloud Foundry UAA, versions later than 4.6.0 and prior to 4.19.0 except 4.10.1 and 4.7.5 and uaa-rel…

Risk 39
Severity
6.1
First published (updated )
CVE-2018-11041

Pivotal Software Cloud Foundry UaaCloud Foundry Foundation UAA, versions 4.12.X and 4.13.X, introduced a feature which could allow pri…

Risk 69
Severity
7.2
First published (updated )
CVE-2018-1262

maven/org.cloudfoundry.identity:cloudfoundry-identity-serverInfoleak

Risk 82
Severity
8.8
First published (updated )
CVE-2018-1192

maven/org.cloudfoundry.identity:cloudfoundry-identity-serverCSRF

Risk 80
Severity
8.8
First published (updated )
CVE-2015-5170
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

maven/org.cloudfoundry.identity:cloudfoundry-identity-serverCloud Foundry Runtime cf-release before 216, UAA before 2.5.2, and Pivotal Cloud Foundry (PCF) Elast…

Risk 89
Severity
9.8
First published (updated )
CVE-2015-5172

Cloudfoundry Cf-releaseInfoleak

Risk 77
Severity
8.8
First published (updated )
CVE-2015-5173

maven/org.cloudfoundry.identity:cloudfoundry-identity-serverThe password change functionality in Cloud Foundry Runtime cf-release before 216, UAA before 2.5.2, …

Risk 89
Severity
9.8
First published (updated )
CVE-2015-5171

Pivotal Software Cloud Foundry UaaIn Cloud Foundry cf-release versions prior to v264; UAA release all versions of UAA v2.x.x, 3.6.x ve…

Risk 64
Severity
6.6
First published (updated )
CVE-2017-8032

Pivotal Software Cloud Foundry UaaAn issue was discovered in Cloud Foundry Foundation cf-release versions prior to v260; UAA release 2…

Risk 69
Severity
7.2
First published (updated )
CVE-2017-4991
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Pivotal Software Cloud Foundry UaaAn issue was discovered in Cloud Foundry Foundation cf-release versions prior to v257; UAA release 2…

Risk 82
Severity
8.8
First published (updated )
CVE-2017-4973

Pivotal Software Cloud Foundry UaaSQL Injection

Risk 43
Severity
7.5
First published (updated )
CVE-2017-4972

Pivotal Software Cloud Foundry UaaAn issue was discovered in Cloud Foundry Foundation Cloud Foundry release v252 and earlier versions,…

Risk 75
Severity
8.1
First published (updated )
CVE-2017-4963

Pivotal Software Cloud Foundry UaaSQL Injection

Risk 40
Severity
6.5
First published (updated )
CVE-2017-4974

Pivotal Software Cloud Foundry UaaAn issue was discovered in Cloud Foundry Foundation cf-release versions prior to v261; UAA release 2…

Risk 89
Severity
9.8
First published (updated )
CVE-2017-4992
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Pivotal Software Cloud Foundry UaaInput Validation

Risk 43
Severity
7.5
First published (updated )
CVE-2017-4994

Cloudfoundry Cf-releaseCSRF

Risk 77
Severity
8.8
First published (updated )
CVE-2015-3191

Pivotal Software Cloud FoundryXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2016-0781

maven/org.cloudfoundry.identity:cloudfoundry-identity-serverWith Cloud Foundry Runtime cf-release versions v208 or earlier, UAA Standalone versions prior to 2.2…

Risk 23
Severity
4.3
First published (updated )
CVE-2015-3189

Cloudfoundry Cf-releaseWith Cloud Foundry Runtime cf-release versions v209 or earlier, UAA Standalone versions 2.2.6 or ear…

Risk 38
Severity
6.1
First published (updated )
CVE-2015-3190
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

maven/org.cloudfoundry.identity:cloudfoundry-identity-serverXSS

Risk 78
Severity
8.1
First published (updated )
CVE-2016-3084

maven/org.cloudfoundry.identity:cloudfoundry-identity-serverPivotal Cloud Foundry 239 and earlier, UAA (aka User Account and Authentication Server) 3.4.1 and ea…

Risk 37
Severity
5.9
First published (updated )
CVE-2016-5016

Pivotal Software Cloud Foundry Elastic RuntimeSQL Injection

Risk 79
Severity
8.8
First published (updated )
CVE-2016-4468

Cloudfoundry Cloud Foundry Uaa BoshAn issue was discovered in Cloud Foundry release v247 through v252, UAA stand-alone release v3.9.0 t…

Risk 45
Severity
7.5
First published (updated )
CVE-2017-4960

Cloudfoundry Cloud Foundry Uaa BoshCloud Foundry before 248; UAA 2.x before 2.7.4.12, 3.x before 3.6.5, and 3.7.x through 3.9.x before …

Risk 75
Severity
8.1
First published (updated )
CVE-2016-6659
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203