Vulnerabilidades en Cloud Foundry
72 resultadosCVE-2023-34061HIGHCVE-2023-34061 – Gorouter route pruningEPSS 0.5%CVE-2020-5399HIGHCredHub does not properly enable TLS for MySQL database connectionsEPSS 0.5%CVE-2020-5402HIGHUAA fails to check the state parameter when authenticating with external IDPsEPSS 0.5%CVE-2024-22279MEDIUMGoRouter Denial of Service AttackEPSS 0.4%CVE-2024-38826MEDIUMCVE-2024-38826 Cloud Controller Denial of Service AttackEPSS 0.4%CVE-2023-34041MEDIUMCVE-2023-34041-Abuse of HTTP Hop-by-Hop Headers in Cloud Foundry GorouterEPSS 0.4%CVE-2026-22734HIGHCloud Foundry UAA SAML 2.0 Signature BypassEPSS 0.4%CVE-2019-3782MEDIUMCredHub CLI writes environment variable credentials to diskEPSS 0.4%CVE-2019-11271MEDIUMBosh Deployment logs leak sensitive informationEPSS 0.3%CVE-2025-22216MEDIUMCVE-2025-22216 UAA Missing Zone ValidationEPSS 0.2%CVE-2025-22246LOWCVE-2025-22246 – UAA Private Key ExposureEPSS 0.2%CVE-2026-41005CRITICALUAA accepts SAML Encrypted Assertions authentication bypassEPSS 0.1%