cbcvebase.
CVE-2023-34061
published 2024-01-12

CVE-2023-34061: Cloud Foundry routing release versions from v0.163.0 to v0.283.0 are vulnerable to a DOS attack. An unauthenticated attacker can use this vulnerability to…

PriorityP340high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
0.54%
41.3th percentile
Cloud Foundry routing release versions from v0.163.0 to v0.283.0 are vulnerable to a DOS attack. An unauthenticated attacker can use this vulnerability to force route pruning and therefore degrade the service availability of the Cloud Foundry deployment.

Affected

4 ranges
VendorProductVersion rangeFixed in
cloud_foundrycf_deployment>= 0.28.0 < 33.6.033.6.0
cloud_foundryrouting_release>= 0.163.0 < 0.284.00.284.0
pivotalcloud_foundry_deployment0.28.0 – 33.5.0
pivotalcloud_foundry_routing_release0.163.0 – 0.283.0
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.