CVE-2018-1193

Cloud Foundry routing-release, versions prior to 0.175.0, lacks sanitization for user-provided X-Forwarded-Proto headers. A remote user can set the X-Forwarded-Proto header in a request to potentially bypass an application requirement to only respond over secure connections.

Published : 2018-05-23 15:29 Updated : 2019-10-03 00:03

5.0
CVSS Score More info
Score 5.0 / 10
5.0
Vendor Product Version URI
Cloudfoundry Cf-deployment 0.0.0 cpe:/a:cloudfoundry:cf-deployment:0.0.0
Cloudfoundry Cf-deployment 0.0.1 cpe:/a:cloudfoundry:cf-deployment:0.0.1
Cloudfoundry Cf-deployment 0.0.2 cpe:/a:cloudfoundry:cf-deployment:0.0.2
Cloudfoundry Cf-deployment 0.1.0 cpe:/a:cloudfoundry:cf-deployment:0.1.0
Cloudfoundry Cf-deployment 0.2.0 cpe:/a:cloudfoundry:cf-deployment:0.2.0
Cloudfoundry Cf-deployment 0.2.1 cpe:/a:cloudfoundry:cf-deployment:0.2.1
Cloudfoundry Cf-deployment 0.2.2 cpe:/a:cloudfoundry:cf-deployment:0.2.2
Cloudfoundry Cf-deployment 0.3.0 cpe:/a:cloudfoundry:cf-deployment:0.3.0
Cloudfoundry Cf-deployment 0.4.0 cpe:/a:cloudfoundry:cf-deployment:0.4.0
Cloudfoundry Cf-deployment 0.5.0 cpe:/a:cloudfoundry:cf-deployment:0.5.0
Cloudfoundry Cf-deployment 0.7.0 cpe:/a:cloudfoundry:cf-deployment:0.7.0
Cloudfoundry Cf-deployment 0.8.0 cpe:/a:cloudfoundry:cf-deployment:0.8.0
Cloudfoundry Cf-deployment 0.9.0 cpe:/a:cloudfoundry:cf-deployment:0.9.0
Cloudfoundry Cf-deployment 0.9.1 cpe:/a:cloudfoundry:cf-deployment:0.9.1
Cloudfoundry Cf-deployment 0.10.0 cpe:/a:cloudfoundry:cf-deployment:0.10.0
Cloudfoundry Cf-deployment 0.11.0 cpe:/a:cloudfoundry:cf-deployment:0.11.0
Cloudfoundry Cf-deployment 0.12.0 cpe:/a:cloudfoundry:cf-deployment:0.12.0
Cloudfoundry Cf-deployment 0.13.0 cpe:/a:cloudfoundry:cf-deployment:0.13.0
Cloudfoundry Cf-deployment 0.14.0 cpe:/a:cloudfoundry:cf-deployment:0.14.0
Cloudfoundry Cf-deployment 0.15.0 cpe:/a:cloudfoundry:cf-deployment:0.15.0
Cloudfoundry Cf-deployment 0.16.0 cpe:/a:cloudfoundry:cf-deployment:0.16.0
Cloudfoundry Cf-deployment 0.17.0 cpe:/a:cloudfoundry:cf-deployment:0.17.0
Cloudfoundry Cf-deployment 0.18.0 cpe:/a:cloudfoundry:cf-deployment:0.18.0
Cloudfoundry Cf-deployment 0.19.0 cpe:/a:cloudfoundry:cf-deployment:0.19.0
Cloudfoundry Cf-deployment 0.20.0 cpe:/a:cloudfoundry:cf-deployment:0.20.0
Cloudfoundry Cf-deployment 0.21.0 cpe:/a:cloudfoundry:cf-deployment:0.21.0
Cloudfoundry Cf-deployment 0.22.0 cpe:/a:cloudfoundry:cf-deployment:0.22.0
Cloudfoundry Cf-deployment 0.23.0 cpe:/a:cloudfoundry:cf-deployment:0.23.0
Cloudfoundry Cf-deployment 0.24.0 cpe:/a:cloudfoundry:cf-deployment:0.24.0
Cloudfoundry Cf-deployment 0.25.0 cpe:/a:cloudfoundry:cf-deployment:0.25.0
Cloudfoundry Cf-deployment 0.26.0 cpe:/a:cloudfoundry:cf-deployment:0.26.0
Cloudfoundry Cf-deployment 0.27.0 cpe:/a:cloudfoundry:cf-deployment:0.27.0
Cloudfoundry Cf-deployment 0.28.0 cpe:/a:cloudfoundry:cf-deployment:0.28.0
Cloudfoundry Cf-deployment 0.29.0 cpe:/a:cloudfoundry:cf-deployment:0.29.0
Cloudfoundry Cf-deployment 0.30.0 cpe:/a:cloudfoundry:cf-deployment:0.30.0
Cloudfoundry Cf-deployment 0.31.0 cpe:/a:cloudfoundry:cf-deployment:0.31.0
Cloudfoundry Cf-deployment 0.32.0 cpe:/a:cloudfoundry:cf-deployment:0.32.0
Cloudfoundry Cf-deployment 0.32.1 cpe:/a:cloudfoundry:cf-deployment:0.32.1
Cloudfoundry Cf-deployment 0.33.0 cpe:/a:cloudfoundry:cf-deployment:0.33.0
Cloudfoundry Cf-deployment 0.34.0 cpe:/a:cloudfoundry:cf-deployment:0.34.0
Cloudfoundry Cf-deployment 0.35.0 cpe:/a:cloudfoundry:cf-deployment:0.35.0
Cloudfoundry Cf-deployment 0.36.0 cpe:/a:cloudfoundry:cf-deployment:0.36.0
Cloudfoundry Cf-deployment 0.37.0 cpe:/a:cloudfoundry:cf-deployment:0.37.0
Cloudfoundry Cf-deployment 1.0.0 cpe:/a:cloudfoundry:cf-deployment:1.0.0
Cloudfoundry Cf-deployment 1.1.0 cpe:/a:cloudfoundry:cf-deployment:1.1.0
Cloudfoundry Cf-deployment 1.2.0 cpe:/a:cloudfoundry:cf-deployment:1.2.0
Cloudfoundry Cf-deployment 1.3.0 cpe:/a:cloudfoundry:cf-deployment:1.3.0
Cloudfoundry Cf-deployment 1.3.1 cpe:/a:cloudfoundry:cf-deployment:1.3.1
Cloudfoundry Cf-deployment 1.4.0 cpe:/a:cloudfoundry:cf-deployment:1.4.0
Cloudfoundry Cf-deployment 1.5.0 cpe:/a:cloudfoundry:cf-deployment:1.5.0
Cloudfoundry Cf-deployment 1.6.0 cpe:/a:cloudfoundry:cf-deployment:1.6.0
Cloudfoundry Cf-deployment 1.7.0 cpe:/a:cloudfoundry:cf-deployment:1.7.0
Cloudfoundry Cf-deployment 1.8.0 cpe:/a:cloudfoundry:cf-deployment:1.8.0
Cloudfoundry Cf-deployment 1.9.0 cpe:/a:cloudfoundry:cf-deployment:1.9.0
Cloudfoundry Cf-deployment 1.10.0 cpe:/a:cloudfoundry:cf-deployment:1.10.0
Cloudfoundry Cf-deployment 1.11.0 cpe:/a:cloudfoundry:cf-deployment:1.11.0
Cloudfoundry Cf-deployment 1.12.0 cpe:/a:cloudfoundry:cf-deployment:1.12.0
Cloudfoundry Cf-deployment 1.13.0 cpe:/a:cloudfoundry:cf-deployment:1.13.0
Cloudfoundry Cf-deployment 1.14.0 cpe:/a:cloudfoundry:cf-deployment:1.14.0
Cloudfoundry Cf-deployment 1.15.0 cpe:/a:cloudfoundry:cf-deployment:1.15.0
Cloudfoundry Cf-deployment 1.16.0 cpe:/a:cloudfoundry:cf-deployment:1.16.0
Cloudfoundry Cf-deployment 1.17.0 cpe:/a:cloudfoundry:cf-deployment:1.17.0
Cloudfoundry Cf-deployment 1.18.0 cpe:/a:cloudfoundry:cf-deployment:1.18.0
Cloudfoundry Cf-deployment 1.19.0 cpe:/a:cloudfoundry:cf-deployment:1.19.0
Cloudfoundry Cf-deployment 1.20.0 cpe:/a:cloudfoundry:cf-deployment:1.20.0
Cloudfoundry Cf-deployment 1.21.0 cpe:/a:cloudfoundry:cf-deployment:1.21.0
Cloudfoundry Cf-deployment 1.22.0 cpe:/a:cloudfoundry:cf-deployment:1.22.0
Cloudfoundry Cf-deployment 1.23.0 cpe:/a:cloudfoundry:cf-deployment:1.23.0
Cloudfoundry Cf-deployment 1.24.0 cpe:/a:cloudfoundry:cf-deployment:1.24.0
Cloudfoundry Cf-deployment 1.25.0 cpe:/a:cloudfoundry:cf-deployment:1.25.0
Cloudfoundry Cf-deployment 1.26.0 cpe:/a:cloudfoundry:cf-deployment:1.26.0
Cloudfoundry Routing-release 0.62.0 cpe:/a:cloudfoundry:routing-release:0.62.0
Cloudfoundry Routing-release 0.66.0 cpe:/a:cloudfoundry:routing-release:0.66.0
Cloudfoundry Routing-release 0.69.0 cpe:/a:cloudfoundry:routing-release:0.69.0
Cloudfoundry Routing-release 0.99.0 cpe:/a:cloudfoundry:routing-release:0.99.0
Cloudfoundry Routing-release 0.118.0 cpe:/a:cloudfoundry:routing-release:0.118.0
Cloudfoundry Routing-release 0.121.0 cpe:/a:cloudfoundry:routing-release:0.121.0
Cloudfoundry Routing-release 0.122.0 cpe:/a:cloudfoundry:routing-release:0.122.0
Cloudfoundry Routing-release 0.123.0 cpe:/a:cloudfoundry:routing-release:0.123.0
Cloudfoundry Routing-release 0.126.0 cpe:/a:cloudfoundry:routing-release:0.126.0
Cloudfoundry Routing-release 0.133.0 cpe:/a:cloudfoundry:routing-release:0.133.0
Cloudfoundry Routing-release 0.134.0 cpe:/a:cloudfoundry:routing-release:0.134.0
Cloudfoundry Routing-release 0.135.0 cpe:/a:cloudfoundry:routing-release:0.135.0
Cloudfoundry Routing-release 0.136.0 cpe:/a:cloudfoundry:routing-release:0.136.0
Cloudfoundry Routing-release 0.137.0 cpe:/a:cloudfoundry:routing-release:0.137.0
Cloudfoundry Routing-release 0.138.0 cpe:/a:cloudfoundry:routing-release:0.138.0
Cloudfoundry Routing-release 0.139.0 cpe:/a:cloudfoundry:routing-release:0.139.0
Cloudfoundry Routing-release 0.140.0 cpe:/a:cloudfoundry:routing-release:0.140.0
Cloudfoundry Routing-release 0.141.0 cpe:/a:cloudfoundry:routing-release:0.141.0
Cloudfoundry Routing-release 0.142.0 cpe:/a:cloudfoundry:routing-release:0.142.0
Cloudfoundry Routing-release 0.143.0 cpe:/a:cloudfoundry:routing-release:0.143.0
Cloudfoundry Routing-release 0.144.0 cpe:/a:cloudfoundry:routing-release:0.144.0
Cloudfoundry Routing-release 0.144.1 cpe:/a:cloudfoundry:routing-release:0.144.1
Cloudfoundry Routing-release 0.145.0 cpe:/a:cloudfoundry:routing-release:0.145.0
Cloudfoundry Routing-release 0.146.0 cpe:/a:cloudfoundry:routing-release:0.146.0
Cloudfoundry Routing-release 0.147.0 cpe:/a:cloudfoundry:routing-release:0.147.0
Cloudfoundry Routing-release 0.149.0 cpe:/a:cloudfoundry:routing-release:0.149.0
Cloudfoundry Routing-release 0.150.0 cpe:/a:cloudfoundry:routing-release:0.150.0
Cloudfoundry Routing-release 0.151.0 cpe:/a:cloudfoundry:routing-release:0.151.0
Cloudfoundry Routing-release 0.152.0 cpe:/a:cloudfoundry:routing-release:0.152.0
Cloudfoundry Routing-release 0.153.0 cpe:/a:cloudfoundry:routing-release:0.153.0
Cloudfoundry Routing-release 0.154.0 cpe:/a:cloudfoundry:routing-release:0.154.0
Cloudfoundry Routing-release 0.155.0 cpe:/a:cloudfoundry:routing-release:0.155.0
Cloudfoundry Routing-release 0.156.0 cpe:/a:cloudfoundry:routing-release:0.156.0
Cloudfoundry Routing-release 0.157.0 cpe:/a:cloudfoundry:routing-release:0.157.0
Cloudfoundry Routing-release 0.158.0 cpe:/a:cloudfoundry:routing-release:0.158.0
Cloudfoundry Routing-release 0.159.0 cpe:/a:cloudfoundry:routing-release:0.159.0
Cloudfoundry Routing-release 0.160.0 cpe:/a:cloudfoundry:routing-release:0.160.0
Cloudfoundry Routing-release 0.161.0 cpe:/a:cloudfoundry:routing-release:0.161.0
Cloudfoundry Routing-release 0.162.0 cpe:/a:cloudfoundry:routing-release:0.162.0
Cloudfoundry Routing-release 0.163.0 cpe:/a:cloudfoundry:routing-release:0.163.0
Cloudfoundry Routing-release 0.164.0 cpe:/a:cloudfoundry:routing-release:0.164.0
Cloudfoundry Routing-release 0.165.0 cpe:/a:cloudfoundry:routing-release:0.165.0
Cloudfoundry Routing-release 0.166.0 cpe:/a:cloudfoundry:routing-release:0.166.0
Cloudfoundry Routing-release 0.167.0 cpe:/a:cloudfoundry:routing-release:0.167.0
Cloudfoundry Routing-release 0.168.0 cpe:/a:cloudfoundry:routing-release:0.168.0
Cloudfoundry Routing-release 0.169.0 cpe:/a:cloudfoundry:routing-release:0.169.0
Cloudfoundry Routing-release 0.170.0 cpe:/a:cloudfoundry:routing-release:0.170.0
Cloudfoundry Routing-release 0.171.0 cpe:/a:cloudfoundry:routing-release:0.171.0
Cloudfoundry Routing-release 0.172.0 cpe:/a:cloudfoundry:routing-release:0.172.0
Cloudfoundry Routing-release 0.173.0 cpe:/a:cloudfoundry:routing-release:0.173.0
Cloudfoundry Routing-release 0.174.0 cpe:/a:cloudfoundry:routing-release:0.174.0
  1. Cloudfoundry (2) Search CVE
    1. Routing-release (51) Search CVE
      1. 0.62.0
      2. 0.66.0
      3. 0.69.0
      4. 0.99.0
      5. 0.118.0
      6. 0.121.0
      7. 0.122.0
      8. 0.123.0
      9. 0.126.0
      10. 0.133.0
      11. 0.134.0
      12. 0.135.0
      13. 0.136.0
      14. 0.137.0
      15. 0.138.0
      16. 0.139.0
      17. 0.140.0
      18. 0.141.0
      19. 0.142.0
      20. 0.143.0
      21. 0.144.0
      22. 0.144.1
      23. 0.145.0
      24. 0.146.0
      25. 0.147.0
      26. 0.149.0
      27. 0.150.0
      28. 0.151.0
      29. 0.152.0
      30. 0.153.0
      31. 0.154.0
      32. 0.155.0
      33. 0.156.0
      34. 0.157.0
      35. 0.158.0
      36. 0.159.0
      37. 0.160.0
      38. 0.161.0
      39. 0.162.0
      40. 0.163.0
      41. 0.164.0
      42. 0.165.0
      43. 0.166.0
      44. 0.167.0
      45. 0.168.0
      46. 0.169.0
      47. 0.170.0
      48. 0.171.0
      49. 0.172.0
      50. 0.173.0
      51. 0.174.0
    2. Cf-deployment (71) Search CVE
      1. 0.0.0
      2. 0.0.1
      3. 0.0.2
      4. 0.1.0
      5. 0.2.0
      6. 0.2.1
      7. 0.2.2
      8. 0.3.0
      9. 0.4.0
      10. 0.5.0
      11. 0.7.0
      12. 0.8.0
      13. 0.9.0
      14. 0.9.1
      15. 0.10.0
      16. 0.11.0
      17. 0.12.0
      18. 0.13.0
      19. 0.14.0
      20. 0.15.0
      21. 0.16.0
      22. 0.17.0
      23. 0.18.0
      24. 0.19.0
      25. 0.20.0
      26. 0.21.0
      27. 0.22.0
      28. 0.23.0
      29. 0.24.0
      30. 0.25.0
      31. 0.26.0
      32. 0.27.0
      33. 0.28.0
      34. 0.29.0
      35. 0.30.0
      36. 0.31.0
      37. 0.32.0
      38. 0.32.1
      39. 0.33.0
      40. 0.34.0
      41. 0.35.0
      42. 0.36.0
      43. 0.37.0
      44. 1.0.0
      45. 1.1.0
      46. 1.2.0
      47. 1.3.0
      48. 1.3.1
      49. 1.4.0
      50. 1.5.0
      51. 1.6.0
      52. 1.7.0
      53. 1.8.0
      54. 1.9.0
      55. 1.10.0
      56. 1.11.0
      57. 1.12.0
      58. 1.13.0
      59. 1.14.0
      60. 1.15.0
      61. 1.16.0
      62. 1.17.0
      63. 1.18.0
      64. 1.19.0
      65. 1.20.0
      66. 1.21.0
      67. 1.22.0
      68. 1.23.0
      69. 1.24.0
      70. 1.25.0
      71. 1.26.0

CWE

There is no CWE for this CVE.

Reference

History of changes

Date Event
2019-10-03 00:03
2018-06-27 11:44
2018-05-23 15:29

New CVE