Known Vulnerabilities for Cloud Foundry Uaa by Pivotal Software
Listed below are 10 of the newest known vulnerabilities associated with "Cloud Foundry Uaa" by "Pivotal Software".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-50201 json | Steeltoe is an open source project that provides a collection of libraries that helps users build cloud-native applications. ... | Not Provided | 2026-06-17 | 2026-06-18 |
| CVE-2026-41005 json | Cloud Foundry UAA incorrectly treated XML encryption to the Service Provider (confidentiality) as a substitute for XML signat... | Not Provided | 2026-06-11 | 2026-06-11 |
| CVE-2026-40965 json | Cloud Foundry UAA versions v76.12.0 through v78.12.0 are vulnerable to a private key exposure. The server contains a vulnerab... | Not Provided | 2026-06-01 | 2026-06-02 |
| CVE-2026-40964 json | Authentication Bypass in cf-auth-proxy in Cloud Foundry Foundation all installations allows an unauthenticated remote attacke... | Not Provided | 2026-06-01 | 2026-06-02 |
| CVE-2026-22734 json | Cloud Foundry UUA is vulnerable to a bypass that allows an attacker to obtain a token for any user and gain access to UAA-pr... | Not Provided | 2026-04-17 | 2026-04-17 |
| CVE-2019-11282 json | Cloud Foundry UAA, versions prior to v74.3.0, contains an endpoint that is vulnerable to SCIM injection attack. A remote auth... | 4.3 - MEDIUM | 2019-10-23 | 2021-08-17 |
| CVE-2019-11270 json | Cloud Foundry UAA versions prior to v73.4.0 contain a vulnerability where a malicious client possessing the 'clients.write' a... | 7.5 - HIGH | 2019-08-05 | 2020-10-02 |
| CVE-2019-3794 json | Cloud Foundry UAA, versions prior to v73.4.0, does not set an X-FRAME-OPTIONS header on various endpoints. A remote user can ... | 5.4 - MEDIUM | 2019-07-18 | 2020-10-16 |
| CVE-2018-15761 json | Cloud Foundry UAA release, versions prior to v64.0, and UAA, versions prior to 4.23.0, contains a validation error which allo... | 8.8 - HIGH | 2018-11-19 | 2019-10-09 |
| CVE-2018-11047 json | Cloud Foundry UAA, versions 4.19 prior to 4.19.2 and 4.12 prior to 4.12.4 and 4.10 prior to 4.10.2 and 4.7 prior to 4.7.6 and... | 7.5 - HIGH | 2018-07-24 | 2019-10-03 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Pivotal Software | Cloud Foundry Uaa | 9 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 8 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 74.5.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 74.4.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 74.3.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 74.2.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 74.1.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 74.0.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 73.7.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 73.4.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 73.3.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 73.0.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 72.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 71.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 70.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 7 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 69.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 68.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 67.0 | |||
| Application | Pivotal Software | Cloud Foundry Uaa | 66.0 |