BIT-cilium-2024-28249

See a problem?
Import Source
https://github.com/bitnami/vulndb/tree/main/data/cilium/BIT-cilium-2024-28249.json
JSON Data
https://api.osv.dev/v1/vulns/BIT-cilium-2024-28249
Aliases
Published
2024-05-15T12:05:30.883Z
Modified
2024-10-22T05:29:02.013800Z
Summary
[none]
Details

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.13.13, 1.14.8, and 1.15.2, in Cilium clusters with IPsec enabled and traffic matching Layer 7 policies, IPsec-eligible traffic between a node's Envoy proxy and pods on other nodes is sent unencrypted and IPsec-eligible traffic between a node's DNS proxy and pods on other nodes is sent unencrypted. This issue has been resolved in Cilium 1.15.2, 1.14.8, and 1.13.13. There is no known workaround for this issue.

Database specific
{
    "cpes": [
        "cpe:2.3:a:cilium:cilium:*:*:*:*:*:*:*:*",
        "cpe:2.3:a:cilium:cilium:*:*:*:*:*:go:*:*"
    ],
    "severity": "Medium"
}
References

Affected packages

Bitnami / cilium

Package

Name
cilium
Purl
pkg:bitnami/cilium

Severity

  • 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N CVSS Calculator

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.13.13
Introduced
1.14.0
Fixed
1.14.8
Introduced
1.15.0
Fixed
1.15.2