Medium severity5.3NVD Advisory· Published May 23, 2018· Updated Jun 17, 2026
CVE-2018-1193
CVE-2018-1193
Description
Cloud Foundry routing-release, versions prior to 0.175.0, lacks sanitization for user-provided X-Forwarded-Proto headers. A remote user can set the X-Forwarded-Proto header in a request to potentially bypass an application requirement to only respond over secure connections.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <0.175.0
- Cloud Foundry/Cloud Foundry Routerv5Range: versions prior to 0.175.0
Patches
Vulnerability mechanics
References
1- www.cloudfoundry.org/blog/cve-2018-1193/nvdVendor Advisory
News mentions
0No linked articles in our index yet.