88 matches found
CVE-2025-30162
Cilium CVE-2025-30162 affects the eBPF-based dataplane in Cilium when Gateway API for Ingress is used with LB-IPAM or BGP LB services and namespace egress policies. The issue allows egress traffic from workloads governed by such policies to LoadBalancers configured by Gateway resources, while Loa...
[SECURITY] Fedora 40 Update: dnsdist-1.9.7-1.fc40
dnsdist is a highly DNS-, DoS- and abuse-aware loadbalancer. Its goal in life is to route traffic to the best server, delivering top performance to legitimate users while shunting or blocking abusive traffic...
[SECURITY] Fedora 39 Update: dnsdist-1.9.7-1.fc39
dnsdist is a highly DNS-, DoS- and abuse-aware loadbalancer. Its goal in life is to route traffic to the best server, delivering top performance to legitimate users while shunting or blocking abusive traffic...
A10 Networks AX Loadbalancer Directory Traversal
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'A10 Networks AX Loadbalancer Directory Traversal', 'Description' = %q This module exploits a directory traversal flaw found in A10 Networks Soft ...
How to Configure AWS Application Loadbalancer (ALB) for Veeam Kasten for Kubernetes
Purpose This article provides an example of configuring AWS Application Loadbalancer ALB for accessing the Veeam Kasten for Kubernetes UI. Note: This documentation assumes that the ALB ingress controller has already been installed and configured. Solution What is an ALB An Application Load Balanc...
Misconfiguration Of LoadBalancer Service
github.com/kubernetes/kubernetes is vulnerable to Misconfiguration of LoadBalancer Service. The vulnerability is present in the proxier.go. In the context of Kube-proxy on Windows, there is an issue where it can inadvertently forward traffic to local processes that are listening on the same port ...
GHSA-35C7-W35F-XWGH Kube-proxy may unintentionally forward traffic
Kube-proxy on Windows can unintentionally forward traffic to local processes listening on the same port spec.ports.port as a LoadBalancer Service when the LoadBalancer controller does not set the status.loadBalancer.ingress.ip field. Clusters where the LoadBalancer controller sets the...
Kube-proxy may unintentionally forward traffic
Kube-proxy on Windows can unintentionally forward traffic to local processes listening on the same port spec.ports.port as a LoadBalancer Service when the LoadBalancer controller does not set the status.loadBalancer.ingress.ip field. Clusters where the LoadBalancer controller sets the...
CVE-2021-25736
Kube-proxy on Windows can unintentionally forward traffic to local processes listening on the same port “spec.ports.port” as a LoadBalancer Service when the LoadBalancer controller does not set the “status.loadBalancer.ingress.ip” field. Clusters where the LoadBalancer controller sets the...
CVE-2021-25736
Kube-proxy on Windows can unintentionally forward traffic to local processes listening on the same port “spec.ports.port” as a LoadBalancer Service when the LoadBalancer controller does not set the “status.loadBalancer.ingress.ip” field. Clusters where the LoadBalancer controller sets the...
Code injection
Kube-proxy on Windows can unintentionally forward traffic to local processes listening on the same port “spec.ports.port” as a LoadBalancer Service when the LoadBalancer controller does not set the “status.loadBalancer.ingress.ip” field. Clusters where the LoadBalancer controller sets the...
CVE-2021-25736
Kube-proxy on Windows can unintentionally forward traffic to local processes listening on the same port “spec.ports.port” as a LoadBalancer Service when the LoadBalancer controller does not set the “status.loadBalancer.ingress.ip” field. Clusters where the LoadBalancer controller sets the...
CVE-2021-25736
Kube-proxy on Windows can unintentionally forward traffic to local processes listening on the same port “spec.ports.port” as a LoadBalancer Service when the LoadBalancer controller does not set the “status.loadBalancer.ingress.ip” field. Clusters where the LoadBalancer controller sets the...
CVE-2021-25736 Windows kube-proxy LoadBalancer contention
Kube-proxy on Windows can unintentionally forward traffic to local processes listening on the same port “spec.ports.port” as a LoadBalancer Service when the LoadBalancer controller does not set the “status.loadBalancer.ingress.ip” field. Clusters where the LoadBalancer controller sets the...
CVE-2021-25736
CVE-2021-25736 affects Kube-proxy on Windows, where traffic can be forwarded to local processes listening on the same port as a LoadBalancer service if the LoadBalancer controller does not set the status.loadBalancer.ingress[].ip. Clusters where the ingress IP is set are unaffected. The provided ...
CVE-2021-25736 Windows kube-proxy LoadBalancer contention
Kube-proxy on Windows can unintentionally forward traffic to local processes listening on the same port “spec.ports.port” as a LoadBalancer Service when the LoadBalancer controller does not set the “status.loadBalancer.ingress.ip” field. Clusters where the LoadBalancer controller sets the...
Loadbalancer Enterprise VA MAX 路径遍历漏洞
Loadbalancer Enterprise VA MAX is a full-featured virtual ADC from the Loadbalancer organization. standardized on WAF and GSLB, it provides the highest throughput and unmatched reliability for critical workloads. A security vulnerability exists in Loadbalancer Enterprise VA MAX version 8.3.8 and...
Loadbalancer Enterprise VA MAX 操作系统命令注入漏洞
Loadbalancer Enterprise VA MAX is a full-featured virtual ADC from the Loadbalancer organization. standardized on WAF and GSLB, it provides the highest throughput and unmatched reliability for critical workloads. A security vulnerability exists in Loadbalancer Enterprise VA MAX version 8.3.8 and...
MAL-2022-675 Malicious code in @twitch-easymode/endpoint-service-loadbalancer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1363444d8b414cabc8b2cf9220bc4c1dcaaed9d95e795a6ccf06ee814a98b0c4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Unverified Ownership in Kubernetes
Kubernetes API server in all versions allow an attacker who is able to create a ClusterIP service and set the spec.externalIPs field, to intercept traffic to that IP address. Additionally, an attacker who is able to patch the status which is considered a privileged operation and should not...