Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:23 p.m.5 views

CVE-2020-11091

In Weave Net before version 2.6.3, an attacker able to run a process as root in a container is able to respond to DNS requests from the host and thereby insert themselves as a fake service. In a cluster with an IPv4 internal network, if IPv6 is not totally disabled on the host via ipv6.disable=1 ...

9.3CVSS6.5AI score0.14555EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/11/04 1:34 a.m.5 views

containernetworking/plugins: IPv6 router advertisements allow for MitM attacks on IPv4 clusters

A vulnerability was found in affected container networking implementations that allow malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending “rogue” IPv6 router advertisements to the host or other containers, t...

6CVSS7.1AI score0.02428EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2020/07/01 4:6 p.m.3 views

containernetworking/plugins: IPv6 router advertisements allow for MitM attacks on IPv4 clusters

A vulnerability was found in affected container networking implementations that allow malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending “rogue” IPv6 router advertisements to the host or other containers, t...

6CVSS7.1AI score0.02428EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2020/06/23 2:27 p.m.4 views

containernetworking/plugins: IPv6 router advertisements allow for MitM attacks on IPv4 clusters

A vulnerability was found in affected container networking implementations that allow malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending “rogue” IPv6 router advertisements to the host or other containers, t...

6CVSS7.1AI score0.02428EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2020/06/17 8:52 p.m.5 views

containernetworking/plugins: IPv6 router advertisements allow for MitM attacks on IPv4 clusters

A vulnerability was found in affected container networking implementations that allow malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending “rogue” IPv6 router advertisements to the host or other containers, t...

6CVSS7.1AI score0.02428EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2020/06/17 7:46 p.m.8 views

containernetworking/plugins: IPv6 router advertisements allow for MitM attacks on IPv4 clusters

A vulnerability was found in affected container networking implementations that allow malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending “rogue” IPv6 router advertisements to the host or other containers, t...

6CVSS7.1AI score0.02428EPSS
Exploits1References5
Veracode
Veracode
added 2020/06/05 6:37 a.m.21 views

Man-in-the-Middle (MtiM)

github.com/weaveworks/weave is vulnerable to Man-in-the-Middle MtiM. IPv4 only clusters allows for MitM attacks via IPv6 rogue router advertisements if an attacker is able to run a process as root in a container and is able to respond to DNS requests from the host...

5.8CVSS5.8AI score0.0086EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2020/06/03 10:55 p.m.25 views

CVE-2020-11091 Weave Net clusters susceptible to MitM attacks via IPv6 rogue router advertisements

In Weave Net before version 2.6.3, an attacker able to run a process as root in a container is able to respond to DNS requests from the host and thereby insert themselves as a fake service. In a cluster with an IPv4 internal network, if IPv6 is not totally disabled on the host via ipv6.disable=1 ...

5.8CVSS6.6AI score0.0086EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2020/06/03 12:0 a.m.5 views

PT-2020-12547 · Weave · Weave Net

Name of the Vulnerable Software and Affected Versions: Weave Net versions prior to 2.6.3 Description: An attacker able to run a process as root in a container can respond to DNS requests from the host and insert themselves as a fake service. In a cluster with an IPv4 internal network, if IPv6 is...

5.8CVSS6.8AI score0.0086EPSS
Exploits0References7
Kubernetes Security Advisories
Kubernetes Security Advisories
added 2020/05/27 7:32 p.m.5 views

IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements

CVSS Rating: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L 6.0 Medium A cluster configured to use an affected container networking implementation is susceptible to man-in-the-middle MitM attacks. By sending “rogue” router advertisements, a malicious container can reconfigure the host to redirect...

6CVSS6.7AI score0.02428EPSS
Exploits1Affected Software1
Rows per page
Query Builder