tailscale -- Insufficient inbound packet filtering in subnet routers and exit nodes

2024-05-0800:00:00

vuxml.freebsd.org

tailscale

inbound filtering

subnet routers

exit nodes

vulnerability

linux

acls

AI Score

Confidence

Low

JSON

Tailscale team reports:

In Tailscale versions earlier than 1.66.0, exit nodes,
subnet routers, and app connectors, could allow inbound
connections to other tailnet nodes from their local area
network (LAN). This vulnerability only affects Linux exit
nodes, subnet routers, and app connectors in tailnets where
ACLs allow “src”: “*”, such as with default ACLs.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchtailscale< 1.66.0UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	tailscale	< 1.66.0	UNKNOWN

References

tailscale.com/security-bulletins#ts-2024-005

AI Score

Confidence

Low

JSON