Cloudfoundry Routing Release — known CVE vulnerabilities
Every CVE whose affected-product data names Cloudfoundry Routing Release, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2019-3789 — CVSS 6.5 (medium): Cloud Foundry Routing Release, all versions prior to 0.188.0, contains a vulnerability that can hijack the traffic to route services hosted…
CVE-2023-20882 — CVSS 5.9 (medium): In Cloud foundry routing release versions from 0.262.0 and prior to 0.266.0,a bug in the gorouter process can lead to a denial of service…
CVE-2024-22279 — CVSS 5.9 (medium): Improper handling of requests in Routing Release > v0.273.0 and <= v0.297.0 allows an unauthenticated attacker to degrade the service…
CVE-2020-5401 — CVSS 5.3 (medium): Cloud Foundry Routing Release, versions prior to 0.197.0, contains GoRouter, which allows malicious clients to send invalid headers…
CVE-2026-22726 — CVSS 5.0 (medium): Route Services can be leveraged to send app traffic to network destinations outside of an app's configured egress rules. As a result, a…