VMware Spring Cloud Data Flow
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in VMware Spring Cloud Data Flow.
Recent VMware Spring Cloud Data Flow Security Advisories
| Advisory | Title | Published |
|---|---|---|
| 2024-07-24 | CVE-2024-37084 - Critical - CVE-2024-37084: Remote code execution in Spring Cloud Data Flow | July 24, 2024 |
| 2024-05-23 | cve-2024-22263 - High - CVE-2024-22263: Arbitrary File Write Vulnerability in Spring Cloud Data Flow | May 23, 2024 |
By the Year
In 2026 there have been 0 vulnerabilities in VMware Spring Cloud Data Flow. Spring Cloud Data Flow did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 1 | 8.80 |
It may take a day or so for new Spring Cloud Data Flow vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent VMware Spring Cloud Data Flow Security Vulnerabilities
Arbitrary File Write via Skipper API in Spring Cloud Data Flow <2.11.4
CVE-2024-37084
8.8 - High
- July 25, 2024
In Spring Cloud Data Flow versions prior to 2.11.4, a malicious user who has access to the Skipper server api can use a crafted upload request to write an arbitrary file to any location on the file system which could lead to compromising the server
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for VMware Spring Cloud Data Flow or by VMware? Click the Watch button to subscribe.
