Permissions, Privileges, and Access Controls in Routing Release - CVE-2019-3789

 

Permissions, Privileges, and Access Controls in Routing Release - CVE-2019-3789

Published: April 24, 2019 / Updated: August 8, 2020


Vulnerability identifier: #VU35955
CSH Severity: Medium
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2019-3789
CWE-ID: CWE-264
Exploitation vector: Remote access
Exploit availability: No public exploit available
Vendor: Cloud Foundry Foundation
Affected software:
Routing Release

Detailed vulnerability description

The vulnerability allows a remote authenticated user to manipulate data.

Cloud Foundry Routing Release, all versions prior to 0.188.0, contains a vulnerability that can hijack the traffic to route services hosted outside the platform. A user with space developer permissions can create a private domain that shadows the external domain of the route service, and map that route to an app. When the gorouter receives traffic destined for the external route service, this traffic will instead be directed to the internal app using the shadow route.


How to mitigate CVE-2019-3789

Install update from vendor's website.

Sources