Cloud Foundry Routing Release vulnerabilities

2 known vulnerabilities affecting cloud_foundry/routing_release.

Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2

Vulnerabilities

Page 1 of 1
CVE-2024-22279HIGHCVSS 7.5≥ v0.273.0, ≤ v0.297.02024-06-10
CVE-2024-22279 [HIGH] CWE-444 CVE-2024-22279: Improper handling of requests in Routing Release > v0.273.0 and <= v0.297.0 allows an unauthenticate Improper handling of requests in Routing Release > v0.273.0 and <= v0.297.0 allows an unauthenticated attacker to degrade the service availability of the Cloud Foundry deployment if performed at scale.
cvelistv5nvd
CVE-2023-34061HIGHCVSS 7.5≥ 0.163.0, < 0.284.02024-01-12
CVE-2023-34061 [HIGH] CWE-400 CVE-2023-34061: Cloud Foundry routing release versions from v0.163.0 to v0.283.0 are vulnerable to a DOS attack. An Cloud Foundry routing release versions from v0.163.0 to v0.283.0 are vulnerable to a DOS attack. An unauthenticated attacker can use this vulnerability to force route pruning and therefore degrade the service availability of the Cloud Foundry deployment.
cvelistv5nvd
Cloud Foundry Routing Release vulnerabilities | cvebase