CVE-2020-5410CISA KEVEPSS p99.9%

CVE-2020-5410VMware Tanzu Spring Cloud Config Directory Traversal Vulnerability

VMware Tanzu / Spring Cloud Configuration (Config) Server

Description

Spring, by VMware Tanzu, Cloud Config contains a path traversal vulnerability that allows applications to serve arbitrary configuration files.

Scoring

EPSS95.59% probability of exploitation · percentile 99.9% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2022-03-25

(incoming)1

TypeTargetConfidenceTier
KEVEntryVMware Tanzu Spring Cloud Config Directory Traversal Vulnerabilitykev-cve-2020-54100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-40982
CVE
CVE-2026-22739
CVE
VMware Tanzu Spring Cloud Function Remote Code Execution Vulnerability
CVE
CVE-2026-41843
CVE
CVE-2025-41229
CVE
CVE-2018-1273
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.