Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware spring cloud config vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2023-20859
In Spring Vault, versions 3.0.x before 3.0.2 and versions 2.3.x before 2.3.3 and older versions, an application is vulnerable to insertion of sensitive information into a log file when it attempts to revoke a Vault batch token.
Vmware Spring Vault
Vmware Spring Cloud Vault 4.0.0
Vmware Spring Cloud Config
Vmware Spring Cloud Vault
7.5
CVSSv3
CVE-2020-5410
Spring Cloud Config, versions 2.2.x before 2.2.3, versions 2.1.x before 2.1.9, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a special...
Vmware Spring Cloud Config
5 Github repositories
6.5
CVSSv3
CVE-2020-5405
Spring Cloud Config, versions 2.2.x before 2.2.2, versions 2.1.x before 2.1.7, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a special...
Vmware Spring Cloud Config
1 Github repository
6.5
CVSSv3
CVE-2019-3799
Spring Cloud Config, versions 2.1.x before 2.1.2, versions 2.0.x before 2.0.4, and versions 1.4.x before 1.4.6, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. A malicious user, or attacker, c...
Vmware Spring Cloud Config
Oracle Communications Cloud Native Core Policy 1.15.0
1 EDB exploit
2 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started