Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Pivotal — Vulnerabilities & Security Advisories 65

Browse all 65 CVE security advisories affecting Pivotal. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Pivotal, now part of VMware, primarily develops cloud-native application platforms and container management solutions, enabling enterprises to deploy and scale microservices. Historically, its software stack has exhibited vulnerabilities typical of complex Java-based enterprise systems, including remote code execution, cross-site scripting, and privilege escalation flaws. These issues often stem from insecure default configurations, improper input validation, or outdated dependencies within its core platform components. While specific major public breaches directly attributed to Pivotal’s infrastructure are rare, the high volume of recorded CVEs indicates persistent challenges in securing its extensive codebase against exploitation. Security assessments frequently highlight the need for rigorous patch management and strict access controls to mitigate risks associated with its container orchestration tools. The organization’s security posture relies heavily on timely updates to address these recurring architectural weaknesses in its cloud infrastructure offerings.

Top products by Pivotal: Cloud Foundry Spring Framework Concourse Spring Security Spring Security OAuth Pivotal Ops Manager Reactor Netty Apps Manager Pivotal Application Service Pivotal Operations Manager Spring Integration Zip Application Service RabbitMQ Pivotal Application Service (PAS) Pivotal Container Service VMware Tanzu Application Service for VMs Pivotal Container Service (PKS) RabbitMQ for Pivotal Platform Pivotal tc Server 4.x Spring MVC On Demand Services SDK Greenplum Command Center RabbitMq for PCF Spring Data Commons Spring Cloud SSO Connector Cloud Cache Spring AMQP pivotal-ops-manager Operations Manager Pivotal Spring Data REST and Spring Boot
CVE IDTitleCVSSSeverityPublished
CVE-2018-1198 Pivotal Cloud Cache 安全漏洞 — Cloud Cache 8.8 -2018-09-17
CVE-2018-11087 TLS validation error — Spring AMQP 5.9 -2018-09-14
CVE-2016-0715 Pivotal Cloud Foundry Elastic Runtime 信息泄露漏洞 — Pivotal Cloud Foundry Elastic RuntimeCWE-200 6.8 -2018-09-11
CVE-2018-11044 Pivotal Application Service Apps Manager 安全漏洞 — Pivotal Application Service 6.5 -2018-07-24
CVE-2018-11049 RSA Identity Governance and Lifecycle Uncontrolled Search Path Vulnerability — Pivotal Operations Manager 7.3 -2018-07-11
CVE-2018-11045 Pivotal Operations Manager 安全漏洞 — Pivotal Operations Manager 5.9 -2018-07-11
CVE-2018-11046 Pivotal Operations Manager 输入验证漏洞 — Operations Manager 6.5 -2018-06-25
CVE-2018-11040 Pivotal Spring Framework 安全漏洞 — Spring Framework 7.5 -2018-06-25
CVE-2018-11039 Pivotal Spring Framework 安全漏洞 — Spring Framework 3.7 -2018-06-25
CVE-2018-1263 Pivotal Spring-integration-zip 安全漏洞 — Spring Integration Zip 5.5 -2018-05-15
CVE-2018-1258 Vmware Spring Framework和VMware Spring Security 授权问题漏洞 — Spring Framework 8.8 -2018-05-11
CVE-2018-1278 Pivotal Application Service Apps Manager 安全漏洞 — Pivotal Application Service 6.5 -2018-05-11
CVE-2018-1261 Pivotal Spring-integration-zip 安全漏洞 — Spring Integration Zip 5.5 -2018-05-11
CVE-2018-1260 Pivotal Spring Security Oauth 安全漏洞 — Spring Security OAuth 9.8 -2018-05-11
CVE-2018-1259 Pivotal Spring Data Commons 安全漏洞 — Spring Data Commons 7.5 -2018-05-11
CVE-2018-1257 Pivotal Spring Framework 输入验证错误漏洞 — Spring Framework 7.5 -2018-05-11
CVE-2018-1280 Pivotal Greenplum Command Center SQL注入漏洞 — Greenplum Command Center 7.5 -2018-05-11
CVE-2018-1256 Pivotal Spring Cloud SSO Connector 安全漏洞 — Spring Cloud SSO Connector 9.8 -2018-05-07
CVE-2016-8220 Pivotal Gemfire for PCF 信息泄露漏洞 — Gemfire for PCF 7.5 -2018-04-18
CVE-2017-8046 Pivotal Spring Data REST、Spring Boot和Spring Data 安全漏洞 — Pivotal Spring Data REST and Spring Boot 9.8 -2018-01-04
CVE-2014-0097 Pivotal Spring Security 安全漏洞 — Spring Security 8.6 -2017-05-25
CVE-2014-0225 Pivotal Spring Framework 安全漏洞 — Spring Framework 8.8 -2017-05-25
CVE-2014-3527 Pivotal Spring Security 安全漏洞 — Spring Security 9.8 -2017-05-25
CVE-2015-1834 Pivotal Cloud Foundry Elastic Runtime和cf-release 路径遍历漏洞 — Cloud Foundry 6.5 -2017-05-25
CVE-2015-3189 多款Pivotal产品安全漏洞 — Cloud Foundry 3.7 -2017-05-25
CVE-2015-3190 多款Pivotal产品安全漏洞 — Cloud Foundry 6.1 -2017-05-25
CVE-2015-3191 多款Pivotal产品安全漏洞 — Cloud Foundry 8.1 -2017-05-25
CVE-2016-0761 Pivotal Cloud Foundry Garden-Linux和Elastic Runtime 安全漏洞 — Cloud Foundry 9.8 -2017-05-25
CVE-2016-0780 Pivotal Cloud Foundry Elastic Runtime和cf-release 安全漏洞 — Cloud Foundry 7.5 -2017-05-25
CVE-2016-0781 多款Pivotal产品安全漏洞 — Cloud Foundry 6.1 -2017-05-25

This page lists every published CVE security advisory associated with Pivotal. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.