CVE-2020-5401

Summary

Cloud Foundry Routing Release, versions prior to 0.197.0, contains GoRouter, which allows malicious clients to send invalid headers, causing caching layers to reject subsequent legitimate clients trying to access the app.

Affected Software

VendorProductVersion RangeStatus
Cloud FoundryRoutingunspecified < 0.197.0affected

Weaknesses

  • CWE-393: CWE-393: Return of Wrong Status Code

ADP Enrichment

CVE Program Container

Additional References

References