Where
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how pivotal compares to other vendors in security performance

View Risk Score →

Software

pivotal reactor netty
6
pivotal cloud foundry
3
pivotal application service
2
pivotal cloud foundry notifications
2
pivotal elastic runtime
2
pivotal software spring security
2
pivotal spring security
2
pivotal spring web flow
2
pivotal apps manager
1
pivotal bosh stemcell
1
pivotal capi-release
1
pivotal cloud foundry autoscaling release
1
pivotal cloud foundry command line interface
1
pivotal cloud foundry command line interface release
1
pivotal cloud foundry container runtime
1
pivotal cloud foundry deployment
1
pivotal cloud foundry deployment concourse tasks
1
pivotal cloud foundry elastic runtime
1
pivotal cloud foundry event alerts
1
pivotal cloud foundry healthwatch
1
pivotal cloud foundry log cache release
1
pivotal cloud foundry networking release
1
pivotal cloud foundry routing release
1
pivotal cloud foundry smoke test
1
pivotal credhub service broker for pcf
1
pivotal metric registrar release
1
pivotal on demand service broker
1
pivotal operations manager
1
pivotal pcf tile generator
1
pivotal pivotal cloud foundry service broker aws
1
pivotal rabbitmq
1
pivotal routing-release
1
pivotal single sign-on cloud foundry
1
pivotal spring boot actuator
1
pivotal spring data geode
1
pivotal spring data jpa
1
pivotal spring flex
1
pivotal spring framework
1
pivotal tanzu rabbitmq
1
pivotal tc runtimes
1
pivotal uaa
1
pivotal uaa bosh
1

Pivotal Spring Data GeodeZip Slip Path Traversal in Snapshot Archive Extraction (Windows-Specific)

Risk 38
Severity
8.2
EPSS
0.07%
First published (updated )
CVE-2026-2818

maven/org.springframework:spring-websocketSpring Framework STOMP CSRF Vulnerability

Risk 22
Severity
4.3
First published (updated )
CVE-2025-41254

Pivotal Spring SecurityThe Spring Security annotation detection mechanism may not correctly resolve annotations on methods …

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2395723

TeleMessage TeleMessage serviceTeleMessage TM SGNL Initialization of a Resource with an Insecure Default Vulnerability

Risk 65
Severity
5.3
Exploited
EPSS
0.04%
First published (updated )
CVE-2025-48927

debian/rabbitmq-serverRabbitMQ has XSS Vulnerability in an Error Message in Management UI

Risk 30
Severity
6.1
EPSS
0.10%
First published (updated )
CVE-2025-30219
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

The RegisterOracle emits 603 patches, names one it wants you to worry about soon

Exploited
First published (updated )
News
The Register

Pivotal Spring Cloud Data FlowArbitrary File Write Vulnerability in Spring Cloud Data Flow

Risk 79
Severity
8.8
First published (updated )
CVE-2024-22263

Pivotal Cloud Foundry Deployment– Gorouter route pruning

Risk 43
Severity
7.5
First published (updated )
CVE-2023-34061

IBM Operational Decision ManagerReactor Netty HTTP Server Metrics DoS Vulnerability

Risk 45
Severity
7.5
First published (updated )
CVE-2023-34054

IBM Operational Decision ManagerPath Traversal

Risk 46
Severity
7.5
First published (updated )
CVE-2023-34062
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Pivotal Cloud Foundry Nfs VolumeCF workflows leak credentials in system audit logs

Risk 38
Severity
6.5
First published (updated )
CVE-2023-20885

Pivotal Reactor NettyInfoleak

Risk 23
Severity
4.3
First published (updated )
CVE-2022-31684

maven/org.springframework.security.oauth:spring-security-oauth2Spring Security OAuth versions 2.5.x prior to 2.5.2 and older unsupported versions are susceptible t…

Risk 40
Severity
6.5
First published (updated )
CVE-2022-22969

linuxfoundation HarborCloud Native Computing Foundation Harbor prior to 1.8.6 and 1.9.3 has a Privilege Escalation Vulnera…

Risk 79
Severity
8.8
First published (updated )
CVE-2019-19023

go/github.com/goharbor/harborSQL Injection

Risk 69
Severity
7.2
First published (updated )
CVE-2019-19029
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

linuxfoundation HarborSQL Injection

Risk 30
Severity
4.9
First published (updated )
CVE-2019-19026

go/github.com/goharbor/harborCSRF

Risk 80
Severity
8.8
First published (updated )
CVE-2019-19025

Pivotal Reactor NettyDoS Via Malformed URL with Reactor Netty HTTP Server

Risk 43
Severity
7.5
First published (updated )
CVE-2020-5403

Pivotal Reactor NettyAuthentication Leak On Redirect With Reactor Netty HttpClient

Risk 45
Severity
6.5
First published (updated )
CVE-2020-5404

Pivotal tc RuntimestcServer JMX Socket Listener Registry Rebinding Local Privilege Escalation

Risk 64
Severity
7.3
First published (updated )
CVE-2019-11288
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Pivotal Reactor NettyReactor Netty authentication leak in redirects

Risk 49
Severity
8.6
First published (updated )
CVE-2019-11284

Pivotal Apps ManagerCSV Injection in usage report downloaded from Pivotal Application Manager

Risk 22
Severity
4.3
First published (updated )
CVE-2019-11275

Pivotal Application ServiceCF CLI writes the client id and secret to config file

Risk 69
Severity
7.8
First published (updated )
CVE-2019-3800

Pivotal Spring Data JPAThis affects Spring Data JPA in versions up to and including 2.1.6, 2.0.14 and 1.11.20. ExampleMatch…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-1730316

Pivotal Spring SecuritySpring Security, versions 4.2.x up to 4.2.12, and older unsupported versions support plain text pass…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-1728993
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Pivotal Spring BatchSpring Batch versions 3.0.9, 4.0.1, 4.1.0, and older unsupported versions, were susceptible to XML E…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-1670597

Pivotal Spring Web ServicesSpring Web Services, versions 2.4.3, 3.0.4, and older unsupported versions of all three projects, we…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-1670593

Pivotal Cloud Foundry Container RuntimeCloud Foundry Container Runtime (kubo-release), versions prior to 0.14.0, may leak UAA and vCenter c…

Risk 79
Severity
8.8
First published (updated )
CVE-2018-1223

Pivotal Spring-flexPivotal/Spring Spring-flex's Action Message Format (AMF3) Java implementation is vulnerable to insecure deserialization

Risk 75
Severity
8.1
First published (updated )
CVE-2017-3203

Pivotal Spring Data RESTMalicious PATCH requests submitted to servers using Spring Data REST backed HTTP resources can use s…

Risk 79
First published (updated )
REDHAT-BUG-1553024
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203