Lucene search
+L

22 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-0945

Malicious code in bioql PyPI...

7.3CVSS7.3AI score0.00552EPSS
Exploits0References6
redhatcve
redhatcve
added 2025/05/23 2:26 a.m.9 views

CVE-2023-27594

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

7.3CVSS6.7AI score0.00552EPSS
Exploits0References1
osv
osv
added 2024/07/01 11:18 a.m.12 views

BIT-HUBBLE-UI-BACKEND-2023-27594

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

7.3CVSS7AI score0.00552EPSS
Exploits0References4
osv
osv
added 2024/07/01 11:18 a.m.31 views

BIT-HUBBLE-UI-2023-27594

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

7.3CVSS7AI score0.00552EPSS
Exploits0References4
osv
osv
added 2024/07/01 11:13 a.m.9 views

BIT-CILIUM-PROXY-2023-27594

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

7.3CVSS7AI score0.00552EPSS
Exploits0References4
osv
osv
added 2024/06/04 9:45 a.m.12 views

BIT-HUBBLE-2023-27594

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

7.3CVSS5.4AI score0.00552EPSS
Exploits0References4
osv
osv
added 2024/05/24 7:23 p.m.13 views

BIT-HUBBLE-RELAY-2023-27594 Cilium vulnerable to potential network policy bypass when routing IPv6 traffic

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

7.3CVSS5.4AI score0.00552EPSS
Exploits0References5
osv
osv
added 2024/05/15 12:8 p.m.16 views

BIT-CILIUM-2023-27594 Cilium vulnerable to potential network policy bypass when routing IPv6 traffic

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

7.3CVSS5.4AI score0.00552EPSS
Exploits0References5
osv
osv
added 2024/05/15 12:8 p.m.17 views

BIT-CILIUM-OPERATOR-2023-27594 Cilium vulnerable to potential network policy bypass when routing IPv6 traffic

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

7.3CVSS5.4AI score0.00552EPSS
Exploits0References5
veracode
veracode
added 2023/03/22 3:10 a.m.19 views

Network Policy Bypass

github.com/cilium/cilium is vulnerable to Network Policy Bypass. The library may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host, which allows a remote attacker to bypass network policies when IPv6 routing is enabled and NodePorts a...

7.3CVSS6.9AI score0.00552EPSS
Exploits0References8Affected Software1
prion
prion
added 2023/03/17 8:15 p.m.14 views

Design/Logic Flaw

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

7.5CVSS7.1AI score0.00552EPSS
Exploits0References4Affected Software1
vulnrichment
vulnrichment
added 2023/03/17 7:56 p.m.3 views

CVE-2023-27594 Cilium vulnerable to potential network policy bypass when routing IPv6 traffic

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

4.2CVSS7.2AI score0.00552EPSS
Exploits0References4
cvelist
cvelist
added 2023/03/17 7:56 p.m.59 views

CVE-2023-27594 Cilium vulnerable to potential network policy bypass when routing IPv6 traffic

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

4.2CVSS7.3AI score0.00552EPSS
Exploits0References4
osv
osv
added 2023/03/17 7:56 p.m.21 views

CVE-2023-27594 Cilium vulnerable to potential network policy bypass when routing IPv6 traffic

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

4.2CVSS7.2AI score0.00552EPSS
Exploits0References6
github
github
added 2023/03/17 6:22 p.m.25 views

Potential network policy bypass when routing IPv6 traffic

Impact Under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which Cilium is running. As a consequence, network policies for that cluster might be bypassed, depending on the specific network polici...

7.3CVSS7.1AI score0.00552EPSS
Exploits0References6Affected Software1
redhatcve
redhatcve
added 2020/04/02 2:8 p.m.58 views

CVE-2019-9946

Cloud Native Computing Foundation CNCF CNI Container Networking Interface 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE-...

7.5CVSS0.2AI score0.03119EPSS
Exploits0References4
nvd
nvd
added 2019/04/02 6:30 p.m.33 views

CVE-2019-9946

Cloud Native Computing Foundation CNCF CNI Container Networking Interface 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE-...

7.5CVSS6.3AI score0.03119EPSS
Exploits0References5
ubuntucve
ubuntucve
added 2019/04/02 6:30 p.m.48 views

CVE-2019-9946

Cloud Native Computing Foundation CNCF CNI Container Networking Interface 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE-...

7.5CVSS6.9AI score0.03119EPSS
Exploits0References3
prion
prion
added 2019/04/02 6:30 p.m.24 views

Code injection

Cloud Native Computing Foundation CNCF CNI Container Networking Interface 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE-...

5CVSS7.2AI score0.03119EPSS
Exploits0References5Affected Software2
alpinelinux
alpinelinux
added 2019/04/02 5:22 p.m.81 views

CVE-2019-9946

Cloud Native Computing Foundation CNCF CNI Container Networking Interface 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE-...

7.5CVSS6.4AI score0.03119EPSS
Exploits0
Rows per page
Query Builder