3 matches found
CVE-2020-5420 Gorouter is vulnerable to DoS attack via invalid HTTP responses
Cloud Foundry Routing Gorouter versions prior to 0.206.0 allow a malicious developer with "cf push" access to cause denial-of-service to the CF cluster by pushing an app that returns specially crafted HTTP responses that crash the Gorouters...
CVE-2020-5420
Cloud Foundry Gorouter (Routing) up to v0.206.0 is vulnerable: a user with cf push access can deploy an app that returns specially crafted HTTP responses, causing Gorouters to crash and leading to DoS of the CF cluster. Affected component: Gorouter in Routing; affected versions: all prior to 0.20...
CVE-2020-5420: Gorouter is vulnerable to DoS attack via invalid HTTP responses | Cloud Foundry
Severity High Vendor Cloud Foundry Foundation Description Cloud Foundry Routing Gorouter versions prior to 0.206.0 allow a malicious developer with “cf push” access to cause denial-of-service to the CF cluster by pushing an app that returns specially crafted HTTP responses that crash the Gorouter...