CVE-2024-37082
CVSS V2 None
CVSS V3 None
Description
Security check loophole in HAProxy release (in combination with routing release) in Cloud Foundry prior to v40.17.0 potentially allows bypass of mTLS authentication to applications hosted on Cloud Foundry.
Overview
- CVE ID
- CVE-2024-37082
- Assigner
- vmware
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-07-03T06:08:46.299Z
- Last Modified Date
- 2024-07-03T15:21:55.880Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://www.cloudfoundry.org/blog/cve-2024-37082-mtls-bypass/ |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-37082 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-37082 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-07-04 13:03:43 | Added to TrackCVE |