N/A

In Cloud Foundry router routing-release all versions prior to v0.163.0 and cf-release all versions prior to v274, in some applications, it is possible to append a combination of characters to the URL that will allow for an open redirect. An attacker could exploit this as a phishing attack to gain access to user credentials or other sensitive data. NOTE: 274 resolves the vulnerability but has a serious bug that is fixed in 275.

N/A

N/A

Pivotal Cloud Foundry routing-release和cf-release 安全漏洞

Pivotal Cloud Foundry routing-release和cf-release都是美国Pivotal Software公司的产品。Pivotal Cloud Foundry cf-release是一套开源的平台即服务（PaaS）云计算平台，它提供容器调度、持续交付和自动化服务部署等功能。routing-release是其中的一个路由组件。 Cloud Foundry router routing-release 0.163.0之前的版本和cf-release 274之前的版本中存在安全漏

N/A

N/A