High severity8.1NVD Advisory· Published Jan 23, 2025· Updated Apr 15, 2026
CVE-2025-0650
CVE-2025-0650
Description
A flaw was found in the Open Virtual Network (OVN). Specially crafted UDP packets may bypass egress access control lists (ACLs) in OVN installations configured with a logical switch with DNS records set on it and if the same switch has any egress ACLs configured. This issue can lead to unauthorized access to virtual machines and containers running on the OVN network.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
26- osv-coords24 versionspkg:rpm/opensuse/openvswitch3&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/openvswitch&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/openvswitch&distro=openSUSE%20Tumbleweedpkg:rpm/suse/openvswitch3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/openvswitch3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/openvswitch3&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/openvswitch3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/openvswitch3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6pkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP6pkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP6pkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/openvswitch&distro=SUSE%20Manager%20Proxy%204.3pkg:rpm/suse/openvswitch&distro=SUSE%20Manager%20Server%204.3
< 3.1.0-150500.3.22.1+ 23 more
- (no CPE)range: < 3.1.0-150500.3.22.1
- (no CPE)range: < 3.1.0-150600.33.6.1
- (no CPE)range: < 3.3.2-25.1
- (no CPE)range: < 3.1.0-150500.3.22.1
- (no CPE)range: < 3.1.0-150500.3.22.1
- (no CPE)range: < 3.1.0-150500.3.22.1
- (no CPE)range: < 3.1.0-150500.3.22.1
- (no CPE)range: < 3.1.0-150500.3.22.1
- (no CPE)range: < 2.14.2-150400.24.26.1
- (no CPE)range: < 2.14.2-150400.24.26.1
- (no CPE)range: < 3.1.0-150600.33.6.1
- (no CPE)range: < 3.1.0-150600.33.6.1
- (no CPE)range: < 2.11.5-3.24.2
- (no CPE)range: < 2.14.2-150400.24.26.1
- (no CPE)range: < 2.14.2-150400.24.26.1
- (no CPE)range: < 3.1.7-150600.33.9.1
- (no CPE)range: < 2.14.2-150400.24.26.1
- (no CPE)range: < 2.14.2-150400.24.26.1
- (no CPE)range: < 3.1.7-150600.33.9.1
- (no CPE)range: < 2.11.5-3.24.2
- (no CPE)range: < 3.1.7-4.1
- (no CPE)range: < 3.1.7-slfo.1.1_2.1
- (no CPE)range: < 2.14.2-150400.24.26.1
- (no CPE)range: < 2.14.2-150400.24.26.1
Patches
Vulnerability mechanics
References
19- www.openwall.com/lists/oss-security/2025/01/22/11nvd
- access.redhat.com/errata/RHSA-2025:1083nvd
- access.redhat.com/errata/RHSA-2025:1084nvd
- access.redhat.com/errata/RHSA-2025:1085nvd
- access.redhat.com/errata/RHSA-2025:1086nvd
- access.redhat.com/errata/RHSA-2025:1087nvd
- access.redhat.com/errata/RHSA-2025:1088nvd
- access.redhat.com/errata/RHSA-2025:1089nvd
- access.redhat.com/errata/RHSA-2025:1090nvd
- access.redhat.com/errata/RHSA-2025:1091nvd
- access.redhat.com/errata/RHSA-2025:1092nvd
- access.redhat.com/errata/RHSA-2025:1093nvd
- access.redhat.com/errata/RHSA-2025:1094nvd
- access.redhat.com/errata/RHSA-2025:1095nvd
- access.redhat.com/errata/RHSA-2025:1096nvd
- access.redhat.com/errata/RHSA-2025:1097nvd
- access.redhat.com/security/cve/CVE-2025-0650nvd
- bugzilla.redhat.com/show_bug.cginvd
- www.openwall.com/lists/oss-security/2025/01/22/5nvd
News mentions
0No linked articles in our index yet.