Vulnerability Report

CVE-2026-22726

Title: Cloudfoundry Route Services Egress Bypass

Egress Bypass

Proof Of Concept

No public PoC currently indexed for CVE-2026-22726.

CWE Category CWE-923

Published Date May 01, 2026

Modified Date May 04, 2026

Exploit Status Not Found

Score 5.0 CVSS v3.1

Exploit Probability (EPSS)

0.05%

Vulnerability Summary

CVE-2026-22726: Route Services can be leveraged to send app traffic to network destinations outside of an app's configured egress rules. As a result, a malicious developer with access to Cloudfoundry could configure a route-service that would allow it to send requests to HTTP services on internal networks reachable by the Gorouter, which may not have previously had direct access from outside networks, or from the application. Routing release: affected from v0.118.0 through v0.371.0 (inclusive); upgrade to v0.372.0 or greater. CF Deployment: affected from v0.0.2 through v54.14.0 (inclusive); upgrade to v55.0.0 or greater (includes routing_release v0.372.0).

Impacted Vendors

cloudfoundry 2

pivotal_software 1

Reference Links

https://www.cloudfoundry.org/blog/cve-2026-22726-route-services-firewall-bypass/

CVSS v3.1

Source Entity [email protected]

Severity MEDIUM

5.0

Attack Vector

NETWORK

Complexity

LOW

Privileges

N/A

Interaction

NONE

Confidentiality

N/A

Integrity

N/A

Availability

N/A

Scope

CHANGED

RAW VECTOR CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L

Associated Attack Patterns (CAPEC)

Total: Patterns

CVE-2026-22726 Exploits & PoCs (Proof Of Concept)

No public PoCs found in our database for this CVE.

May 04, 2026 MODIFIED

Vulnerability data updated via NVD.

Attack Vector Matrix

Access Vector NETWORK

Complexity LOW

Privileges N/A

Interaction NONE

CVSS Vector String


                                    CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L

Affected Stack

No specific products linked.