Lucene search
K

170 matches found

Github Security Blog
Github Security Blog
added 2022/06/07 12:0 a.m.21 views

Calico vulnerable to pod route hijacking

Clusters using Calico version 3.22.1 and below, Calico Enterprise version 3.12.0 and below, may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not...

5.5CVSS6.6AI score0.00562EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2022/06/06 6:15 p.m.23 views

CVE-2022-28224

Clusters using Calico version 3.22.1 and below, Calico Enterprise version 3.12.0 and below, may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not...

5.5CVSS0.00562EPSS
Exploits0References1
Prion
Prion
added 2022/06/06 6:15 p.m.17 views

Input validation

Clusters using Calico version 3.22.1 and below, Calico Enterprise version 3.12.0 and below, may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not...

5.5CVSS7.1AI score0.00562EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2022/06/06 5:19 p.m.100 views

CVE-2022-28224

CVE-2022-28224 affects Calico across clusters using Calico ≤ 3.22.1 and Calico Enterprise ≤ 3.12.0. The issue allows a privileged attacker to set a floating IP annotation on a pod without the feature being enabled, due to insufficient validation, potentially intercepting and rerouting traffic to ...

5.5CVSS5.5AI score0.00562EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2022/06/06 5:19 p.m.29 views

CVE-2022-28224 Calico and Calico Enterprise may be vulnerable to route hijacking with the floating IP feature

Clusters using Calico version 3.22.1 and below, Calico Enterprise version 3.12.0 and below, may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not...

5.5CVSS6.5AI score0.00562EPSS
Exploits0References1
OSV
OSV
added 2022/06/06 5:19 p.m.5 views

CVE-2022-28224 Calico and Calico Enterprise may be vulnerable to route hijacking with the floating IP feature

Clusters using Calico version 3.22.1 and below, Calico Enterprise version 3.12.0 and below, may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not...

5.5CVSS6.7AI score0.00562EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/06/06 12:0 a.m.5 views

Tigera Calico 输入验证错误漏洞

Tigera Calico is an open source network security solution for container, virtual machine and host workloads from US-based Tigera. A security vulnerability exists in Tigera Calico version 3.22.1 and earlier, and Calico Enterprise version 3.12.0 and earlier, which stems from vulnerability to route...

5.5CVSS7AI score0.00562EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/06/01 9:1 p.m.2 views

CVE-2022-28224

Clusters using Calico version 3.22.1 and below, Calico Enterprise version 3.12.0 and below, may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not...

5.5CVSS5.8AI score0.00562EPSS
Exploits0References2
OSV
OSV
added 2022/02/15 1:57 a.m.40 views

GHSA-PF59-J7C2-RH6X Exposure of Sensitive Information to an Unauthorized Actor and Insertion of Sensitive Information Into Sent Data in Calico

Clusters using Calico version 3.14.0 and below, Calico Enterprise version 2.8.2 and below, may be vulnerable to information disclosure if IPv6 is enabled but unused. A compromised pod with sufficient privilege is able to reconfigure the node’s IPv6 interface due to the node accepting route...

6CVSS4.6AI score0.00902EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2022/02/15 1:57 a.m.24 views

Exposure of Sensitive Information to an Unauthorized Actor and Insertion of Sensitive Information Into Sent Data in Calico

Clusters using Calico version 3.14.0 and below, Calico Enterprise version 2.8.2 and below, may be vulnerable to information disclosure if IPv6 is enabled but unused. A compromised pod with sufficient privilege is able to reconfigure the node’s IPv6 interface due to the node accepting route...

6CVSS4.5AI score0.00902EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2021/07/30 2:15 p.m.18 views

CVE-2021-37606

Meow hash 0.5/calico does not sufficiently thwart key recovery by an attacker who can query whether there's a collision in the bottom bits of the hashes of two messages, as demonstrated by an attack against a long-running web service that allows the attacker to infer collisions by measuring timin...

5.3CVSS0.00741EPSS
Exploits0References2
Prion
Prion
added 2021/07/30 2:15 p.m.11 views

Code injection

Meow hash 0.5/calico does not sufficiently thwart key recovery by an attacker who can query whether there's a collision in the bottom bits of the hashes of two messages, as demonstrated by an attack against a long-running web service that allows the attacker to infer collisions by measuring timin...

5CVSS5.2AI score0.00741EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2021/07/30 12:0 a.m.2 views

Meow hash 加密问题漏洞

Meow hash is an open source high-speed hash function named after the Meow character in Meow the Infinite. A cryptographically problematic vulnerability exists in Meow hash 0.5/calico that stems from the fact that Meow hash 0.5/calico does not adequately prevent an attacker from recovering keys. A...

5.3CVSS5.5AI score0.00741EPSS
Exploits0References3
Cvelist
Cvelist
added 2021/07/28 6:34 p.m.21 views

CVE-2021-37606

Meow hash 0.5/calico does not sufficiently thwart key recovery by an attacker who can query whether there's a collision in the bottom bits of the hashes of two messages, as demonstrated by an attack against a long-running web service that allows the attacker to infer collisions by measuring timin...

5.5AI score0.00741EPSS
Exploits0References2
CVE
CVE
added 2021/07/28 6:34 p.m.56 views

CVE-2021-37606

CVE-2021-37606 documents a vulnerability in Meow hash 0.5/calico where an attacker can recover keys by testing whether there are collisions in the bottom bits of two message hashes, demonstrated via timing-difference measurements on a long-running web service. The issue is described across multip...

5.3CVSS5.2AI score0.00741EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2021/07/28 12:0 a.m.3 views

PT-2021-21735 · Meow Hash · Meow Hash

Name of the Vulnerable Software and Affected Versions: Meow hash version 0.5/calico Description: The issue concerns a weakness in Meow hash 0.5/calico that allows an attacker to recover keys by querying whether there's a collision in the bottom bits of the hashes of two messages. This is...

5.3CVSS5.1AI score0.00741EPSS
Exploits0References4
Photon
Photon
added 2021/06/03 12:0 a.m.34 views

Moderate Photon OS Security Update - PHSA-2021-3.0-0247

Updates of 'kubernetes', 'calico' packages of Photon OS have been released...

6CVSS6.5AI score0.00902EPSS
Exploits0
Photon
Photon
added 2021/03/18 12:0 a.m.29 views

Moderate Photon OS Security Update - PHSA-2021-0247

Updates of 'calico', 'kubernetes' packages of Photon OS have been released...

2.1CVSS2.1AI score0.00902EPSS
Exploits0
Photon
Photon
added 2021/02/12 12:0 a.m.41 views

Important Photon OS Security Update - PHSA-2021-0359

Updates of 'cassandra' packages of Photon OS have been released...

7.5CVSS7AI score0.01931EPSS
Exploits0
CNVD
CNVD
added 2020/06/04 12:0 a.m.11 views

Tigera Calico Information Disclosure Vulnerability

Tigera Calico is an open source cybersecurity solution for container, virtual machine, and host workloads from US-based Tigera. An information disclosure vulnerability exists in Tigera Calico 3.14.0 and earlier and Calico Enterprise 2.8.2 and earlier, which stems from a program that does not...

6CVSS5.8AI score0.00902EPSS
Exploits0References1
Rows per page
Query Builder