Cloud Foundry Routing Release: Header Injection Vulnerability

Cloud Foundry Routing Release: Header Injection Vulnerability

CVE-2020-5401 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Cloud Foundry Routing Release, versions prior to 0.197.0, contains GoRouter, which allows malicious clients to send invalid headers, causing caching layers to reject subsequent legitimate clients trying to access the app.

Learn more about our Web Application Penetration Testing UK.