Vulnerabilities > Vmware > Tanzu Application Service FOR VMS > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-04-10 CVE-2020-5406 Insufficiently Protected Credentials vulnerability in VMWare Tanzu Application Service for VMS
VMware Tanzu Application Service for VMs, 2.6.x versions prior to 2.6.18, 2.7.x versions prior to 2.7.11, and 2.8.x versions prior to 2.8.5, includes a version of PCF Autoscaling that writes database connection properties to its log, including database username and password.
network
low complexity
vmware CWE-522
6.5