Internal IP Disclosure Pattern Found
sureshhcl opened this issue · 1 comments
sureshhcl commented
Stratos Version
4.4.0
Frontend Deployment type
- Cloud Foundry Application (cf push)
- Kubernetes, using a helm chart
- Docker, single container deploying all components
- npm run start
- Other (please specify below)
Backend (Jet Stream) Deployment type
- Cloud Foundry Application (cf push)
- Kubernetes, using a helm chart
- Docker, single container deploying all components
- Other (please specify below)
Expected behaviour
AppScan DAST scan shouldn't show internal IP address in the response
Actual behaviour
AppScan DAST scan shows internal IP address in the response
Steps to reproduce the behavior
AppScan DAST scans for Stratos URL https://ui.169.53.186.50.nip.io. AppScan discovered what looks like an internal IP address in the response.
Log output covering before error and any error statements
Vary: Origin
X-Frame-Options: SAMEORIGIN
Cache-Control: no-store
Strict-Transport-Security: max-age=15724800; includeSubDomains
Date: Wed, 10 Mar 2021 14:46:37 GMT
Content-Type: text/plain; charset=utf-8
...nal-credhub-0","rules":[{"protocol":"tcp","description":"Allow traffic to credhub�0","destination":"172.30.164.191/32","ports":"8844"}],"running_default":true,"staging_default":true,"spaces_url":"/v2/secur
ity_group...
...
...
Strict-Transport-Security: max-age=15724800; includeSubDomains
Date: Wed, 10 Mar 2021 14:46:37 GMT
Content-Type: text/plain; charset=utf-8
...":"internal-uaa-0","rules":[{"protocol":"tcp","description":"Allow traffic to uaa�0","destination":"172.30.169.114/32","ports":"8443"}],"running_default":true,"staging_default":true,"spaces_url":"/v2/secur
ity_group
Detailed Description
Remove internal IP addresses from your website
Context
Possible Implementation
richard-cox commented
These look like CF entities. Please be careful when creating issues using automated tools to first read what it produces and then apply some context.