- How many CVEs does Pivotal have?
- Pivotal has 189 published CVE records since 2014, including 0 in the last two years.
- How many Pivotal CVEs are in CISA KEV?
- Yes — 1 of Pivotal's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which Pivotal products have the most CVEs?
- The Pivotal products with the most published CVEs are cloud foundry uaa, cloud foundry elastic runtime, Cloud Foundry, Spring framework, RabbitMQ.
- What are the most common weakness types in Pivotal CVEs?
- Pivotal's CVEs most often map to these CWE weakness types: CWE-532 (Insertion of Sensitive Information into Log File), CWE-601 (URL Redirection to Untrusted Site ('Open Redirect')), CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor), CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')).
- Are there public exploits for Pivotal vulnerabilities?
- Yes — 6 of Pivotal's CVEs have a known public exploit.
- How many critical Pivotal vulnerabilities are there?
- Pivotal has 34 critical and 89 high-severity CVEs.
- What is the average severity of Pivotal CVEs?
- The average CVSS base score across Pivotal's scored CVEs is 7.5.