CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-22279

Improper handling of requests in Routing Release > v0.273.0 and <= v0.297.0 allows an unauthenticated attacker to degrade the service availability of the Cloud Foundry deployment if performed at scale.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.0%

CVSS Severity

CVSS v3 Score 5.9

References

https://www.cloudfoundry.org/blog/cve-2024-22279-gorouter-denial-of-service-attack/
https://www.cloudfoundry.org/blog/cve-2024-22279-gorouter-denial-of-service-attack/

Products affected by CVE-2024-22279

Cloudfoundry » Cf-Deployment » Version: 30.9.0

cpe:2.3:a:cloudfoundry:cf-deployment:30.9.0
Cloudfoundry » Cf-Deployment » Version: 32.4.0

cpe:2.3:a:cloudfoundry:cf-deployment:32.4.0
Cloudfoundry » Cf-Deployment » Version: 40.13.0

cpe:2.3:a:cloudfoundry:cf-deployment:40.13.0
Cloudfoundry » Routing Release » Version: 0.273.0

cpe:2.3:a:cloudfoundry:routing_release:0.273.0
Cloudfoundry » Routing Release » Version: 0.297.0

cpe:2.3:a:cloudfoundry:routing_release:0.297.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-22279

Products

Pricing

Contact Us