CVE-2020-11091
CVE-2020-11091 affects Weave Net up to version 2.6.3. An attacker that can run a root process in a container can respond to DNS requests from the host and insert themselves as a fake service. In IPv4 internal networks, if IPv6 is not fully disabled and IPv6 forwarding is off but accept_ra is on, ...