Main Vulnerability Database Vulnerabilities #VU35955

Permissions, Privileges, and Access Controls in Routing Release - CVE-2019-3789

Published: April 24, 2019 / Updated: August 8, 2020

Vulnerability identifier: #VU35955

CSH Severity: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2019-3789

CWE-ID: CWE-264

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Routing Release

Software vendor:
Cloud Foundry Foundation

Description

The vulnerability allows a remote authenticated user to manipulate data.

Cloud Foundry Routing Release, all versions prior to 0.188.0, contains a vulnerability that can hijack the traffic to route services hosted outside the platform. A user with space developer permissions can create a private domain that shadows the external domain of the route service, and map that route to an app. When the gorouter receives traffic destined for the external route service, this traffic will instead be directed to the internal app using the shadow route.

Remediation

Install update from vendor's website.

External links

https://www.cloudfoundry.org/blog/cve-2019-3789

Permissions, Privileges, and Access Controls in Routing Release - CVE-2019-3789

Description

Remediation

External links

Please verify you're human