Product Release Advisory - Elastic Application Runtime Windows add-on for VMware Tanzu Platform 6.0.22
36534
24 November 2025
24 November 2025
CLOSED
HIGH
7.5
N/A
See CVE list in advisory
Product Release Advisory - Elastic Application Runtime Windows add-on for VMware Tanzu Platform 6.0.22
|
Advisory ID |
TNZ-2025-0291 |
|
Tanzu Issue Date |
2025-11-21 |
|
Updated on |
|
Highest Score CVE from list below advisory details |
|
|
Severity |
High |
|
CVSS V4 Vector |
Unavailable |
|
CVSS V4 Score |
Unavailable (Sev: Unavailable) |
|
CVSS V3.1 Vector |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
|
CVSS V3.1 Score |
7.5 (Sev: HIGH) |
|
CVSS V2 Vector |
Unavailable |
|
CVSS V2 Score |
Unavailable (Sev: Unavailable) |
- Note: if cvss scores are "Unavailable" it is most likely due to the vulnerability being GHSA or BDSA without a matching CVE for nvd lookup.
Product Version Release Advisory
- Product Release Elastic Application Runtime Windows add-on for VMware Tanzu Platform 6.0.22
- Product Release Notes: https://techdocs.broadcom.com/us/en/vmware-tanzu/platform/tanzu-platform-for-cloud-foundry/10-2/tpcf/release-notes.html
Security Fixes: This release has the following security fixes, listed by component.
|
Component |
Vulnerabilities Resolved |
|
envoy-nginx |
|
|
garden-runc |
|