logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2020-10749

Description

A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perform man-in-the-middle (MitM) attacks. A malicious container can exploit this flaw by sending rogue IPv6 router advertisements to the host or other containers, to redirect traffic to the malicious container.


Affected Software


CPE Name Name Version
cncf:cni_network_plugins cncf cni network plugins 0.8.6
redhat:openshift_container_platform redhat openshift container platform 4.0
fedoraproject:fedora fedoraproject fedora 32
redhat:enterprise_linux redhat enterprise linux 7.0
redhat:enterprise_linux redhat enterprise linux 8.0

Related