CVE-2018-1193

CVE-2018-1193

Cloud Foundry routing-release, versions prior to 0.175.0, lacks sanitization for user-provided X-Forwarded-Proto headers. A remote user can set the X-Forwarded-Proto header in a request to potentially bypass an application requirement to only respond over secure connections.

Source: CVE-2018-1193

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다