Cloud Controller versions before 1.118.0 are vulnerable to unauthenticated denial of Service(DoS) vulnerability allowing unauthenticated malicious users to cause denial of service by using REST HTTP requests with label_selectors on multiple V3 endpoints by generating an enormous SQL query.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cloudfoundry capi-release |
||
cloudfoundry cf-deployment |