#VU35955 Permissions, Privileges, and Access Controls in Routing Release - CVE-2019-3789

Cybersecurity Help s.r.o.

Published: 2019-04-24 | Updated: 2020-08-08

Vulnerability identifier: #VU35955

Vulnerability risk: Medium

CVSSv4.0: 4.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-3789

CWE-ID: CWE-264

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Routing Release
Server applications / Virtualization software

Vendor: Cloud Foundry Foundation

Description

The vulnerability allows a remote authenticated user to manipulate data.

Cloud Foundry Routing Release, all versions prior to 0.188.0, contains a vulnerability that can hijack the traffic to route services hosted outside the platform. A user with space developer permissions can create a private domain that shadows the external domain of the route service, and map that route to an app. When the gorouter receives traffic destined for the external route service, this traffic will instead be directed to the internal app using the shadow route.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Routing Release: 0.62.0 - 0.187.0

External links
https://www.cloudfoundry.org/blog/cve-2019-3789

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Permissions, Privileges, and Access Controls in Routing Release