CVE-2023-34061

Summary

Cloud Foundry routing release versions from v0.163.0 to v0.283.0 are vulnerable to a DOS attack. An unauthenticated attacker can use this vulnerability to force route pruning and therefore degrade the service availability of the Cloud Foundry deployment.

Affected Software

VendorProductVersion RangeStatus
Cloud FoundryRouting Release0.163.0 < 0.284.0affected
Cloud FoundryCF deployment0.28.0 < 33.6.0affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References