In cloud foundry CAPI versions prior to 1.122, a denial-of-service attack in which a developer can push a service broker that (accidentally or maliciously) causes CC instances to timeout and fail is possible. An attacker can leverage this vulnerability to cause an inability for anyone to push or manage apps.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: vmware
Published: 2022-03-25T18:02:40
Updated: 2022-03-25T18:02:40
Reserved: 2021-01-04T00:00:00
Link: CVE-2021-22100
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-03-25T19:15:08.620
Modified: 2022-04-04T16:52:55.000
Link: CVE-2021-22100
JSON object: View
Redhat Information
No data.
CWE