CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

29 matches found

OSV•added 2026/05/12 8:39 a.m.•3 views

BIT-CILIUM-OPERATOR-2026-41520 Cillium exposes sensitive information included in the cilium-bugtool debug archive

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.17.15, 1.18.9, and 1.19.3, the output of cilium-bugtool can contain sensitive data when the tool is run against Cilium deployments with WireGuard encryption enabled. This issue has been...

7.9CVSS5.7AI score0.00005EPSS

Exploits0References5

Positive Technologies•added 2026/05/12 12:0 a.m.•6 views

PT-2026-40275

7.9CVSS5.7AI score0.00005EPSS

Exploits0References6

Positive Technologies•added 2026/05/12 12:0 a.m.•8 views

PT-2026-40276

7.9CVSS5.7AI score0.00005EPSS

Exploits0References6

NVD•added 2026/05/08 11:16 p.m.•6 views

CVE-2026-41520

7.9CVSS0.00005EPSS

Exploits0References4

CVE•added 2026/05/08 10:1 p.m.•13 views

CVE-2026-41520

CVE-2026-41520 affects Cilium’s bugtool output. Prior to versions 1.17.15, 1.18.9, and 1.19.3, running cilium-bugtool against deployments with WireGuard encryption can reveal sensitive data in the bug archive. The issue is addressed in the patched releases: 1.17.15, 1.18.9, and 1.19.3. The CVSS-d...

7.9CVSS5.7AI score0.00005EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/05/08 10:1 p.m.•29 views

CVE-2026-41520 Cillium exposes sensitive information included in the cilium-bugtool debug archive

7.9CVSS0.00005EPSS

Exploits0References4

Vulnrichment•added 2026/05/08 10:1 p.m.•6 views

CVE-2026-41520 Cillium exposes sensitive information included in the cilium-bugtool debug archive

7.9CVSS5.7AI score0.00005EPSS

Exploits0References4

Github Security Blog•added 2026/04/25 11:39 p.m.•6 views

Cillium exposes sensitive information included in the cilium-bugtool debug archive

Impact The output of cilium-bugtool can contain sensitive data when the tool is run against Cilium deployments with WireGuard encryption enabled. Users of WireGuard Transparent Encryption are affected. The sensitive data is the WireGuard private key ciliumwg0.key used for node-to-node encrypted...

7.9CVSS5.5AI score0.00005EPSS

Exploits0References7Affected Software1

OSV•added 2026/04/25 11:39 p.m.•1 views

GHSA-GJ49-89WH-H4GJ Cillium exposes sensitive information included in the cilium-bugtool debug archive

7.9CVSS5.8AI score0.00005EPSS

Exploits0References7

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-0762

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00051EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2024-0547

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00051EPSS

Exploits0References5

RedhatCVE•added 2025/05/23 9:46 a.m.•4 views

CVE-2024-25631

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who have enabled an external kvstore and Wireguard transparent encryption, traffic between pods in the affected cluster is not encrypted. This issue affects Cilium v1.14 before v1.14.7 and...

6.1CVSS6.1AI score0.00051EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 9:45 a.m.•3 views

CVE-2024-25630

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who are using CRDs to store Cilium state the default configuration and Wireguard transparent encryption, traffic to/from the Ingress and health endpoints is not encrypted. This issue affect...

6.1CVSS6.1AI score0.00051EPSS

Exploits0References1

RedhatCVE•added 2025/04/26 12:6 a.m.•4 views

CVE-2025-32793

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Versions 1.15.0 to 1.15.15, 1.16.0 to 1.16.8, and 1.17.0 to 1.17.2, are vulnerable when using Wireguard transparent encryption in a Cilium cluster, packets that originate from a terminating endpoint can lea...

4CVSS6.7AI score0.00014EPSS

Exploits0References1

SUSE CVE•added 2025/04/24 3:24 a.m.•3 views

SUSE CVE-2025-32793

4CVSS6.8AI score0.00014EPSS

Exploits0References3

OSV•added 2025/04/23 8:57 a.m.•12 views

BIT-HUBBLE-RELAY-2025-32793 Cilium packets from terminating endpoints may not be encrypted in Wireguard-enabled clusters

4CVSS4.2AI score0.00014EPSS

Exploits0References3

OSV•added 2025/04/23 8:52 a.m.•10 views

BIT-CILIUM-OPERATOR-2025-32793 Cilium packets from terminating endpoints may not be encrypted in Wireguard-enabled clusters

4CVSS4.2AI score0.00014EPSS

Exploits0References3

OSV•added 2025/04/22 6:14 p.m.•9 views

GO-2025-3635 In Cilium, packets from terminating endpoints may not be encrypted in Wireguard-enabled clusters in github.com/cilium/cilium

In Cilium, packets from terminating endpoints may not be encrypted in Wireguard-enabled clusters in github.com/cilium/cilium...

4CVSS4.3AI score0.00014EPSS

Exploits0References3

Github Security Blog•added 2025/04/21 4:17 p.m.•11 views

In Cilium, packets from terminating endpoints may not be encrypted in Wireguard-enabled clusters

Impact When using Wireguard transparent encryption in a Cilium cluster, packets that originate from a terminating endpoint can leave the source node without encryption due to a race condition in how traffic is processed by Cilium. Patches This issue has been patched in...

4CVSS6.9AI score0.00014EPSS

Exploits0References5Affected Software1

OSV•added 2025/04/21 4:17 p.m.•14 views

GHSA-5VXX-C285-PCQ4 In Cilium, packets from terminating endpoints may not be encrypted in Wireguard-enabled clusters

4CVSS6.6AI score0.00014EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by