THREATOPS
THREAT OPSCVEs › CVE-2020-5410

CVE-2020-5410 — VMware Tanzu Spring Cloud Config Directory Traversal Vulnerability

CISA KEVExploited: confirmedVMware Tanzu

Spring, by VMware Tanzu, Cloud Config contains a path traversal vulnerability that allows applications to serve arbitrary configuration files.

Vulnerability details