VYPR
Moderate severityNVD Advisory· Published Mar 18, 2024· Updated Aug 2, 2024

Cilium has possible unencrypted traffic between nodes when using IPsec and L7 policies

CVE-2024-28249

Description

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.13.13, 1.14.8, and 1.15.2, in Cilium clusters with IPsec enabled and traffic matching Layer 7 policies, IPsec-eligible traffic between a node's Envoy proxy and pods on other nodes is sent unencrypted and IPsec-eligible traffic between a node's DNS proxy and pods on other nodes is sent unencrypted. This issue has been resolved in Cilium 1.15.2, 1.14.8, and 1.13.13. There is no known workaround for this issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/cilium/ciliumGo
< 1.13.131.13.13
github.com/cilium/ciliumGo
>= 1.14.0, < 1.14.81.14.8
github.com/cilium/ciliumGo
>= 1.15.0, < 1.15.21.15.2

Affected products

63

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.