Pivotal Cloud Foundry (PCF) Elastic Runtime before 1.6.34 and 1.7.x before 1.7.12 places 169.254.0.0/16 in the all_open Application Security Group, which might allow remote attackers to bypass intended network-connectivity restrictions by leveraging access to the 169.254.169.254 address.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Cloud_foundry_elastic_runtime | Pivotal_software | * | 1.6.33 (including) |
| Cloud_foundry_elastic_runtime | Pivotal_software | 1.7.0 (including) | 1.7.0 (including) |
| Cloud_foundry_elastic_runtime | Pivotal_software | 1.7.1 (including) | 1.7.1 (including) |
| Cloud_foundry_elastic_runtime | Pivotal_software | 1.7.2 (including) | 1.7.2 (including) |
| Cloud_foundry_elastic_runtime | Pivotal_software | 1.7.3 (including) | 1.7.3 (including) |
| Cloud_foundry_elastic_runtime | Pivotal_software | 1.7.4 (including) | 1.7.4 (including) |
| Cloud_foundry_elastic_runtime | Pivotal_software | 1.7.5 (including) | 1.7.5 (including) |
| Cloud_foundry_elastic_runtime | Pivotal_software | 1.7.6 (including) | 1.7.6 (including) |
| Cloud_foundry_elastic_runtime | Pivotal_software | 1.7.7 (including) | 1.7.7 (including) |
| Cloud_foundry_elastic_runtime | Pivotal_software | 1.7.8 (including) | 1.7.8 (including) |
| Cloud_foundry_elastic_runtime | Pivotal_software | 1.7.9 (including) | 1.7.9 (including) |
| Cloud_foundry_elastic_runtime | Pivotal_software | 1.7.10 (including) | 1.7.10 (including) |
| Cloud_foundry_elastic_runtime | Pivotal_software | 1.7.11 (including) | 1.7.11 (including) |