Vulnerabilities > Vmware > Tanzu Application Service FOR VMS
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-10 | CVE-2020-5406 | Insufficiently Protected Credentials vulnerability in VMWare Tanzu Application Service for VMS VMware Tanzu Application Service for VMs, 2.6.x versions prior to 2.6.18, 2.7.x versions prior to 2.7.11, and 2.8.x versions prior to 2.8.5, includes a version of PCF Autoscaling that writes database connection properties to its log, including database username and password. | 6.5 |