CVE-2023-34061
published 2024-01-12CVE-2023-34061: Cloud Foundry routing release versions from v0.163.0 to v0.283.0 are vulnerable to a DOS attack. An unauthenticated attacker can use this vulnerability to…
PriorityP340high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
0.54%
41.3th percentile
Cloud Foundry routing release versions from v0.163.0 to v0.283.0 are vulnerable to a DOS attack. An unauthenticated attacker can use this vulnerability to force route pruning and therefore degrade the service availability of the Cloud Foundry deployment.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cloud_foundry | cf_deployment | >= 0.28.0 < 33.6.0 | 33.6.0 |
| cloud_foundry | routing_release | >= 0.163.0 < 0.284.0 | 0.284.0 |
| pivotal | cloud_foundry_deployment | 0.28.0 – 33.5.0 | — |
| pivotal | cloud_foundry_routing_release | 0.163.0 – 0.283.0 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-01-12
Published