浏览 91+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2020-5426 | Scheduler for TAS can transmit privileged UAA token in plaintext | VMware Tanzu | Pivotal Scheduler | 超危 | - | 2020-11-11 17:05:15 | Deep Dive |
| CVE-2020-5409 | Concourse Open Redirect in the /sky/login endpoint | Pivotal | Concourse | 中危 | - | 2020-05-13 23:15:17 | Deep Dive |
| CVE-2020-5406 | PCF Autoscaling logs its database credentials | Pivotal | VMware Tanzu Application Service for VMs | 中危 | - | 2020-04-10 18:50:12 | Deep Dive |
| CVE-2020-5403 | DoS Via Malformed URL with Reactor Netty HTTP Server | Pivotal | Reactor Netty | 高危 | - | 2020-03-03 18:25:14 | Deep Dive |
| CVE-2020-5404 | Authentication Leak On Redirect With Reactor Netty HttpClient | Pivotal | Reactor Netty | 中危 | - | 2020-03-03 17:55:14 | Deep Dive |
| CVE-2019-11288 | tcServer JMX Socket Listener Registry Rebinding Local Privilege Escalation | Pivotal | Pivotal tc Server 4.x | 高危 | - | 2020-01-27 18:50:13 | Deep Dive |
| CVE-2013-6430 | Pivotal Software Spring Framework‘JavaScriptUtils.javaScriptEscape()’方法跨站脚本漏洞 | Pivotal | Spring MVC | 中危 | - | 2020-01-10 13:28:11 | Deep Dive |
| CVE-2019-11292 | Pivotal Ops Manager logs query parameters in tomcat access file | Pivotal | Pivotal Ops Manager | 中危 | - | 2020-01-08 23:55:12 | Deep Dive |
| CVE-2019-11287 | RabbitMQ Web Management Plugin DoS via heap overflow | Pivotal | RabbitMQ for Pivotal Platform | 高危 | - | 2019-11-22 23:26:09 | Deep Dive |
| CVE-2019-11291 | RabbitMQ XSS attack via federation and shovel endpoints | Pivotal | RabbitMQ | 中危 | - | 2019-11-22 22:56:09 | Deep Dive |
| CVE-2019-11284 | Reactor Netty authentication leak in redirects | Pivotal | Reactor Netty | 高危 | - | 2019-10-17 17:40:12 | Deep Dive |
| CVE-2019-11281 | RabbitMQ XSS attack | Pivotal | RabbitMQ | 中危 | - | 2019-10-16 15:23:47 | Deep Dive |
| CVE-2019-11275 | CSV Injection in usage report downloaded from Pivotal Application Manager | Pivotal | Apps Manager | 中危 | - | 2019-10-01 14:17:40 | Deep Dive |
| CVE-2019-11280 | Privilege escalation through the invitations service | Pivotal | Pivotal Application Service (PAS) | 高危 | - | 2019-09-20 18:35:18 | Deep Dive |
| CVE-2019-11276 | Apps Manager sends tokens to Spring apps via HTTP | Pivotal | Pivotal Application Service (PAS) | 中危 | - | 2019-08-19 14:49:28 | Deep Dive |
| CVE-2019-11273 | PKS Telemetry logs credentials | Pivotal | Pivotal Container Service (PKS) | 中危 | - | 2019-07-23 22:34:08 | Deep Dive |
| CVE-2019-3790 | Ops Manager uaa client issues tokens after refresh token expiration | Pivotal | Pivotal Ops Manager | 中危 | - | 2019-06-06 19:16:17 | Deep Dive |
| CVE-2019-3801 | Java Projects using HTTP to fetch dependencies | Cloud Foundry | CredHub | 超危 | - | 2019-04-25 20:17:37 | Deep Dive |
| CVE-2019-3788 | UAA redirect-uri allows wildcard in the subdomain | Cloud Foundry | UAA Release (OSS) | 中危 | - | 2019-04-25 20:17:37 | Deep Dive |
| CVE-2019-3793 | Invitations Service supports HTTP connections | Pivotal | Apps Manager | 超危 | - | 2019-04-24 15:21:10 | Deep Dive |