Product Release Advisory - Tanzu Platform for Cloud Foundry isolation segment 10.0.8
35976
24 July 2025
24 July 2025
CLOSED
CRITICAL
9.1
N/A
See CVE list in advisory
Product Release Advisory - Tanzu Platform for Cloud Foundry isolation segment 10.0.8
|
Advisory Details |
|
|
Severity |
Critical |
|
CVSSv3 Range |
9.1 |
|
CVSSv3 Vector |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |
|
Issue Date |
2025-07-24 |
|
Updated on |
Product Version Release Advisory
- Product Release Tanzu Platform for Cloud Foundry isolation segment 10.0.8
- Product Release Notes: https://techdocs.broadcom.com/us/en/vmware-tanzu/platform/tanzu-platform-for-cloud-foundry/10-0/tpcf/segment-rn.html#10.0.8
Security Fixes This release has the following security fixes, listed by component and area.
|
Component |
Vulnerabilities Resolved |
|
routing |
CVE-2025-22871 (Critical) |
|
diego |
CVE-2024-53427 (High) |
|
garden-runc |
GHSA-cm76-qm8v-3j95 (CVE-2025-47290) (High) |
|
routing |
GHSA-6v2p-p543-phr9 (CVE-2025-22868) (High) |
|
diego |
GHSA-mh63-6h87-95cp (CVE-2025-30204) (High) |
|
diego |
CVE-2025-48060 (High) |
|
nfs-volume diego smb-volume garden-runc |
CVE-2025-22874 (High) |
|
garden-runc nfs-volume smb-volume diego |
CVE-2025-4673 (Medium) |
|
diego |
CVE-2024-23337 (Medium) |
|
nfs-volume |
CVE-2025-4575 (Medium) |
|
nfs-volume smb-volume |
GHSA-vrw8-fxc6-2r93 (No known CVE) (Medium) |
|
routing |
CVE-2025-49014 (Medium) |
|
garden-runc nfs-volume diego smb-volume |
CVE-2025-0913 (Medium) |