1 results (0.001 seconds)
CVSS: 7.7EPSS: 0%CPEs: 2EXPL: 0
CVSS: 7.7EPSS: 0%CPEs: 2EXPL: 0CVE-2020-5420 – Gorouter is vulnerable to DoS attack via invalid HTTP responses
https://notcve.org/view.php?id=CVE-2020-5420
Cloud Foundry Routing (Gorouter) versions prior to 0.206.0 allow a malicious developer with "cf push" access to cause denial-of-service to the CF cluster by pushing an app that returns specially crafted HTTP responses that crash the Gorouters. Cloud Foundry Routing (Gorouter) versiones anteriores a 0.206.0, permiten a un desarrollador malicioso con acceso "cf push" causar una denegación de servicio al clúster CF al presionar una aplicación que devuelve respuestas HTTP especialmente diseñadas que bloquean los Gorouters • https://www.cloudfoundry.org/blog/cve-2020-5420 • CWE-754: Improper Check for Unusual or Exceptional Conditions •