BIT-hubble-2024-28249

See a problem?
Import Source
https://github.com/bitnami/vulndb/tree/main/data/hubble/BIT-hubble-2024-28249.json
JSON Data
https://api.osv.dev/v1/vulns/BIT-hubble-2024-28249
Aliases
Published
2024-06-04T09:42:49.805Z
Modified
2024-07-01T12:27:17.712664Z
Summary
[none]
Details

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.13.13, 1.14.8, and 1.15.2, in Cilium clusters with IPsec enabled and traffic matching Layer 7 policies, IPsec-eligible traffic between a node's Envoy proxy and pods on other nodes is sent unencrypted and IPsec-eligible traffic between a node's DNS proxy and pods on other nodes is sent unencrypted. This issue has been resolved in Cilium 1.15.2, 1.14.8, and 1.13.13. There is no known workaround for this issue.

References

Affected packages

Bitnami / hubble

Package

Name
hubble
Purl
pkg:bitnami/hubble

Severity

  • 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N CVSS Calculator

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.13.13
Introduced
1.14.0
Fixed
1.14.8
Introduced
1.15.0
Fixed
1.15.2