Lucene search
K

5 matches found

NVD
NVD
added 2020/06/03 11:15 p.m.22 views

CVE-2020-11091

In Weave Net before version 2.6.3, an attacker able to run a process as root in a container is able to respond to DNS requests from the host and thereby insert themselves as a fake service. In a cluster with an IPv4 internal network, if IPv6 is not totally disabled on the host via ipv6.disable=1 ...

5.8CVSS6.7AI score0.0086EPSS
Exploits0References2
OSV
OSV
added 2020/06/03 11:15 p.m.21 views

CVE-2020-11091

In Weave Net before version 2.6.3, an attacker able to run a process as root in a container is able to respond to DNS requests from the host and thereby insert themselves as a fake service. In a cluster with an IPv4 internal network, if IPv6 is not totally disabled on the host via ipv6.disable=1 ...

5.8CVSS7.2AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2020/06/03 11:15 p.m.37 views

CVE-2020-11091

In Weave Net before version 2.6.3, an attacker able to run a process as root in a container is able to respond to DNS requests from the host and thereby insert themselves as a fake service. In a cluster with an IPv4 internal network, if IPv6 is not totally disabled on the host via ipv6.disable=1 ...

5.8CVSS6.2AI score0.0086EPSS
Exploits0References3
Cvelist
Cvelist
added 2020/06/03 10:55 p.m.25 views

CVE-2020-11091 Weave Net clusters susceptible to MitM attacks via IPv6 rogue router advertisements

In Weave Net before version 2.6.3, an attacker able to run a process as root in a container is able to respond to DNS requests from the host and thereby insert themselves as a fake service. In a cluster with an IPv4 internal network, if IPv6 is not totally disabled on the host via ipv6.disable=1 ...

5.8CVSS6.6AI score0.0086EPSS
Exploits0References2
CVE
CVE
added 2020/06/03 10:55 p.m.82 views

CVE-2020-11091

CVE-2020-11091 affects Weave Net up to version 2.6.3. An attacker that can run a root process in a container can respond to DNS requests from the host and insert themselves as a fake service. In IPv4 internal networks, if IPv6 is not fully disabled and IPv6 forwarding is off but accept_ra is on, ...

5.8CVSS6.6AI score0.0086EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder