CVE-2024-25630

cilium/cilium

on github

Published

February 20, 2024

Severity

CVSS v3:

N/A

CVSS v2:

N/A

Description

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who are using CRDs to store Cilium state (the default configuration) and Wireguard transparent encryption, traffic to/from the Ingress and health endpoints is not encrypted. This issue affects Cilium v1.14 before v1.14.7 and has been patched in Cilium v1.14.7. There is no workaround to this issue.

References

https://github.com/cilium/cilium/security/advisories/GHSA-7496-fgv9-xw82
https://docs.cilium.io/en/stable/security/network/encryption-wireguard/#encryption-wg
https://github.com/cilium/cilium/releases/tag/v1.14.7

Configurations

CPE23	Version Start	Version End	Exact Version

External Links

NVD - CVE-2024-25630