CVE-2023-29002 vulnerabilities

Vulnerabilities for packages: hubble-ui...

CVE-2023-29002 vulnerabilities

Vulnerabilities for packages: hubble-ui...

CVE-2023-29002

Cilium (eBPF-based dataplane) in debug mode logs contents of the cilium-secrets namespace, potentially exposing TLS private keys for Ingress/GatewayAPI. This could enable an attacker with access to debug output to intercept/modify traffic to the cluster. The issue occurs at agent restart, on secr...