VMware Tanzu Application Service Virtual Machines
By the Year
In 2024 there have been 0 vulnerabilities in VMware Tanzu Application Service Virtual Machines . Last year Tanzu Application Service Virtual Machines had 1 security vulnerability published. Right now, Tanzu Application Service Virtual Machines is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 1 | 6.50 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Tanzu Application Service Virtual Machines vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent VMware Tanzu Application Service Virtual Machines Security Vulnerabilities
The VMware Tanzu Application Service for VMs and Isolation Segment contain an information disclosure vulnerability due to the logging of credentials in hex encoding in platform system audit logs
CVE-2023-20891
6.5 - Medium
- July 26, 2023
The VMware Tanzu Application Service for VMs and Isolation Segment contain an information disclosure vulnerability due to the logging of credentials in hex encoding in platform system audit logs. A malicious non-admin user who has access to the platform system audit logs can access hex encoded CF API admin credentials and can push new malicious versions of an application. In a default deployment non-admin users do not have access to the platform system audit logs.
Insertion of Sensitive Information into Log File
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for VMware Tanzu Application Service Virtual Machines or by VMware? Click the Watch button to subscribe.
