GO-2025-4167 Cilium with misconfigured toGroups in policies can lead to unrestricted egress traffic in Ciliumgithub.com/cilium/cilium

Cilium with misconfigured toGroups in policies can lead to unrestricted egress traffic in Ciliumgithub.com/cilium/cilium...

CVE-2025-64715 Cilium with misconfigured toGroups in policies can lead to unrestricted egress traffic

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.16.17, 1.17.10, and 1.18.4, CiliumNetworkPolicys which use egress.toGroups.aws.securityGroupsIds to reference AWS security group IDs that do not exist or are not attached to any network...

CVE-2025-64715

Cilium (eBPF dataplane) is affected when CiliumNetworkPolicys reference AWS security group IDs via egress.toGroups.aws.securityGroupsIds that do not exist or are not attached to an NIC. In these cases, the toCIDRset for the derived policy may not be generated, potentially widening outbound access...

PT-2025-1368 · Ibm · Ibm App Connect Enterprise Certified Container

Name of the Vulnerable Software and Affected Versions: IBM App Connect Enterprise Certified Container versions 7.1 through 12.7 Description: The issue concerns the IBM App Connect Enterprise Certified Container, where Pods used for internal infrastructure do not restrict network egress. This coul...