Product Release Advisory - Ruby Buildpack 1.10.43 - ruby-buildpack-offline-cflinuxfs4
36363
05 November 2025
05 November 2025
CLOSED
HIGH
8.1
N/A
See CVE list in advisory
Product Release Advisory - Ruby Buildpack 1.10.43
|
Advisory ID |
TNZ-2025-0193 |
|
Tanzu Issue Date |
2025-10-29 |
|
Updated on |
|
Highest Score CVE from list below advisory details |
|
|
Severity |
High |
|
CVSS V4 Vector |
Unavailable |
|
CVSS V4 Score |
Unavailable (Sev: Unavailable) |
|
CVSS V3.1 Vector |
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N |
|
CVSS V3.1 Score |
7.7 (Sev: HIGH) |
|
CVSS V2 Vector |
AV:N/AC:L/Au:S/C:P/I:P/A:N |
|
CVSS V2 Score |
5.5 (Sev: Unavailable) |
- Note: if cvss scores are "Unavailable" is is most likely due to the vulnerability being GHSA or BDSA without a matching CVE for nvd lookup.
Product Version Release Advisory
- Product Release Ruby Buildpack 1.10.43
- Product Release Notes: https://techdocs.broadcom.com/us/en/vmware-tanzu/standalone-components/tanzu-buildpacks/services/buildpacks/ruby-release-notes.html
Security Fixes This release has the following security fixes, listed by component.
|
Component |
Vulnerabilities Resolved |
|
ruby-buildpack-offline-cflinuxfs4 |
|