170 matches found
Calico vulnerable to pod route hijacking
Clusters using Calico version 3.22.1 and below, Calico Enterprise version 3.12.0 and below, may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not...
CVE-2022-28224
Clusters using Calico version 3.22.1 and below, Calico Enterprise version 3.12.0 and below, may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not...
Input validation
Clusters using Calico version 3.22.1 and below, Calico Enterprise version 3.12.0 and below, may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not...
CVE-2022-28224
CVE-2022-28224 affects Calico across clusters using Calico ≤ 3.22.1 and Calico Enterprise ≤ 3.12.0. The issue allows a privileged attacker to set a floating IP annotation on a pod without the feature being enabled, due to insufficient validation, potentially intercepting and rerouting traffic to ...
CVE-2022-28224 Calico and Calico Enterprise may be vulnerable to route hijacking with the floating IP feature
Clusters using Calico version 3.22.1 and below, Calico Enterprise version 3.12.0 and below, may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not...
CVE-2022-28224 Calico and Calico Enterprise may be vulnerable to route hijacking with the floating IP feature
Clusters using Calico version 3.22.1 and below, Calico Enterprise version 3.12.0 and below, may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not...
Tigera Calico 输入验证错误漏洞
Tigera Calico is an open source network security solution for container, virtual machine and host workloads from US-based Tigera. A security vulnerability exists in Tigera Calico version 3.22.1 and earlier, and Calico Enterprise version 3.12.0 and earlier, which stems from vulnerability to route...
CVE-2022-28224
Clusters using Calico version 3.22.1 and below, Calico Enterprise version 3.12.0 and below, may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not...
GHSA-PF59-J7C2-RH6X Exposure of Sensitive Information to an Unauthorized Actor and Insertion of Sensitive Information Into Sent Data in Calico
Clusters using Calico version 3.14.0 and below, Calico Enterprise version 2.8.2 and below, may be vulnerable to information disclosure if IPv6 is enabled but unused. A compromised pod with sufficient privilege is able to reconfigure the node’s IPv6 interface due to the node accepting route...
Exposure of Sensitive Information to an Unauthorized Actor and Insertion of Sensitive Information Into Sent Data in Calico
Clusters using Calico version 3.14.0 and below, Calico Enterprise version 2.8.2 and below, may be vulnerable to information disclosure if IPv6 is enabled but unused. A compromised pod with sufficient privilege is able to reconfigure the node’s IPv6 interface due to the node accepting route...
CVE-2021-37606
Meow hash 0.5/calico does not sufficiently thwart key recovery by an attacker who can query whether there's a collision in the bottom bits of the hashes of two messages, as demonstrated by an attack against a long-running web service that allows the attacker to infer collisions by measuring timin...
Code injection
Meow hash 0.5/calico does not sufficiently thwart key recovery by an attacker who can query whether there's a collision in the bottom bits of the hashes of two messages, as demonstrated by an attack against a long-running web service that allows the attacker to infer collisions by measuring timin...
Meow hash 加密问题漏洞
Meow hash is an open source high-speed hash function named after the Meow character in Meow the Infinite. A cryptographically problematic vulnerability exists in Meow hash 0.5/calico that stems from the fact that Meow hash 0.5/calico does not adequately prevent an attacker from recovering keys. A...
CVE-2021-37606
Meow hash 0.5/calico does not sufficiently thwart key recovery by an attacker who can query whether there's a collision in the bottom bits of the hashes of two messages, as demonstrated by an attack against a long-running web service that allows the attacker to infer collisions by measuring timin...
CVE-2021-37606
CVE-2021-37606 documents a vulnerability in Meow hash 0.5/calico where an attacker can recover keys by testing whether there are collisions in the bottom bits of two message hashes, demonstrated via timing-difference measurements on a long-running web service. The issue is described across multip...
PT-2021-21735 · Meow Hash · Meow Hash
Name of the Vulnerable Software and Affected Versions: Meow hash version 0.5/calico Description: The issue concerns a weakness in Meow hash 0.5/calico that allows an attacker to recover keys by querying whether there's a collision in the bottom bits of the hashes of two messages. This is...
Moderate Photon OS Security Update - PHSA-2021-3.0-0247
Updates of 'kubernetes', 'calico' packages of Photon OS have been released...
Moderate Photon OS Security Update - PHSA-2021-0247
Updates of 'calico', 'kubernetes' packages of Photon OS have been released...
Important Photon OS Security Update - PHSA-2021-0359
Updates of 'cassandra' packages of Photon OS have been released...
Tigera Calico Information Disclosure Vulnerability
Tigera Calico is an open source cybersecurity solution for container, virtual machine, and host workloads from US-based Tigera. An information disclosure vulnerability exists in Tigera Calico 3.14.0 and earlier and Calico Enterprise 2.8.2 and earlier, which stems from a program that does not...