CNI Plugins Portmap nftables backend intercepts non-local traffic
Description
The CNI portmap plugin allows containers to emulate opening a host port, forwarding that traffic to the container. Versions 1.6.0 through 1.8.0 inadvertently forward all traffic with the same destination port as the host port when the portmap plugin is configured with the nftables backend, thus ignoring the destination IP. This includes traffic not intended for the node itself, i.e. traffic to containers hosted on the node. Containers that request HostPort forwarding can intercept all traffic destined for that port. This requires that the portmap plugin be explicitly configured to use the nftables backend. This issue is fixed in version 1.9.0. To workaround, configure the portmap plugin to use the iptables backend. It does not have this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/containernetworking/pluginsGo | >= 1.6.0, < 1.9.0 | 1.9.0 |
Affected products
387v1.6.0, v1.6.1, v1.6.2, …+ 1 more
- (no CPE)range: v1.6.0, v1.6.1, v1.6.2, …
- (no CPE)range: >= 1.6.0, < 1.9.0
- osv-coords385 versionspkg:apk/chainguard/amazon-k8s-cni-fipspkg:apk/chainguard/amazon-k8s-cni-init-fipspkg:apk/chainguard/amazon-k8s-cni-init-fips-compatpkg:apk/chainguard/azure-ipampkg:apk/chainguard/azure-ipam-dropgzpkg:apk/chainguard/buildahpkg:apk/chainguard/buildctlpkg:apk/chainguard/buildctl-fipspkg:apk/chainguard/buildkitdpkg:apk/chainguard/buildkitd-fipspkg:apk/chainguard/calico-3.30pkg:apk/chainguard/calico-3.31pkg:apk/chainguard/calico-apiserver-3.30pkg:apk/chainguard/calico-apiserver-3.31pkg:apk/chainguard/calico-apiserver-compat-3.30pkg:apk/chainguard/calico-apiserver-compat-3.31pkg:apk/chainguard/calico-apiserver-fips-3.30pkg:apk/chainguard/calico-apiserver-fips-3.31pkg:apk/chainguard/calico-app-policy-3.30pkg:apk/chainguard/calico-app-policy-3.31pkg:apk/chainguard/calico-app-policy-fips-3.30pkg:apk/chainguard/calico-app-policy-fips-3.31pkg:apk/chainguard/calico-cni-3.30pkg:apk/chainguard/calico-cni-3.31pkg:apk/chainguard/calico-cni-compat-3.30pkg:apk/chainguard/calico-cni-compat-3.31pkg:apk/chainguard/calico-cni-compat-fips-3.30pkg:apk/chainguard/calico-cni-compat-fips-3.31pkg:apk/chainguard/calico-cni-fips-3.30pkg:apk/chainguard/calico-cni-fips-3.31pkg:apk/chainguard/calicoctl-3.30pkg:apk/chainguard/calicoctl-3.31pkg:apk/chainguard/calicoctl-fips-3.30pkg:apk/chainguard/calicoctl-fips-3.31pkg:apk/chainguard/calico-felix-3.30pkg:apk/chainguard/calico-felix-fips-3.30pkg:apk/chainguard/calico-felix-fips-3.31pkg:apk/chainguard/calico-fips-3.30pkg:apk/chainguard/calico-fips-3.31pkg:apk/chainguard/calico-goldmane-3.30pkg:apk/chainguard/calico-goldmane-3.31pkg:apk/chainguard/calico-goldmane-fips-3.30pkg:apk/chainguard/calico-goldmane-fips-3.31pkg:apk/chainguard/calico-key-cert-provisioner-3.30pkg:apk/chainguard/calico-key-cert-provisioner-3.31pkg:apk/chainguard/calico-key-cert-provisioner-fips-3.30pkg:apk/chainguard/calico-key-cert-provisioner-fips-3.31pkg:apk/chainguard/calico-kube-controllers-3.30pkg:apk/chainguard/calico-kube-controllers-3.31pkg:apk/chainguard/calico-kube-controllers-fips-3.30pkg:apk/chainguard/calico-kube-controllers-fips-3.31pkg:apk/chainguard/calico-node-3.30pkg:apk/chainguard/calico-node-3.31pkg:apk/chainguard/calico-node-fips-3.30pkg:apk/chainguard/calico-node-fips-3.31pkg:apk/chainguard/calico-pod2daemon-3.30pkg:apk/chainguard/calico-pod2daemon-3.31pkg:apk/chainguard/calico-pod2daemon-fips-3.30pkg:apk/chainguard/calico-pod2daemon-fips-3.31pkg:apk/chainguard/calico-pod2daemon-flexvol-compat-3.30pkg:apk/chainguard/calico-typha-client-3.30pkg:apk/chainguard/calico-typha-client-3.31pkg:apk/chainguard/calico-typha-client-fips-3.30pkg:apk/chainguard/calico-typha-client-fips-3.31pkg:apk/chainguard/calico-typhad-3.30pkg:apk/chainguard/calico-typhad-3.31pkg:apk/chainguard/calico-typhad-fips-3.30pkg:apk/chainguard/calico-typhad-fips-3.31pkg:apk/chainguard/calico-whisker-3.30pkg:apk/chainguard/calico-whisker-3.31pkg:apk/chainguard/calico-whisker-backend-3.30pkg:apk/chainguard/calico-whisker-backend-3.31pkg:apk/chainguard/calico-whisker-backend-fips-3.30pkg:apk/chainguard/calico-whisker-backend-fips-3.31pkg:apk/chainguard/calico-whisker-fips-3.30pkg:apk/chainguard/calico-whisker-fips-3.31pkg:apk/chainguard/containerd-2pkg:apk/chainguard/containerd-fipspkg:apk/chainguard/containerd-service-2pkg:apk/chainguard/containerd-service-2.0pkg:apk/chainguard/containerd-service-fipspkg:apk/chainguard/containerd-shim-runc-v2-2pkg:apk/chainguard/containerd-shim-runc-v2-2.0pkg:apk/chainguard/containerd-shim-runc-v2-fipspkg:apk/chainguard/containerd-stress-2pkg:apk/chainguard/containerd-stress-2.0pkg:apk/chainguard/containerd-stress-fipspkg:apk/chainguard/ctr-2pkg:apk/chainguard/ctr-2.0pkg:apk/chainguard/ctr-fipspkg:apk/chainguard/datadog-agent-7.77pkg:apk/chainguard/datadog-agent-7.78pkg:apk/chainguard/datadog-agent-fips-7.77pkg:apk/chainguard/datadog-agent-fips-7.78pkg:apk/chainguard/dockerpkg:apk/chainguard/docker-config-mirror-gcrpkg:apk/chainguard/docker-config-mirror-gcr-fipspkg:apk/chainguard/dockerdpkg:apk/chainguard/dockerd-fipspkg:apk/chainguard/docker-dindpkg:apk/chainguard/docker-dind-compatpkg:apk/chainguard/docker-dind-compat-fipspkg:apk/chainguard/docker-dind-fipspkg:apk/chainguard/dockerd-oci-entrypointpkg:apk/chainguard/dockerd-oci-entrypoint-fipspkg:apk/chainguard/dockerd-servicepkg:apk/chainguard/dockerd-service-fipspkg:apk/chainguard/docker-fipspkg:apk/chainguard/docker-initpkg:apk/chainguard/docker-init-fipspkg:apk/chainguard/docker-modprobe-compatpkg:apk/chainguard/docker-oci-entrypointpkg:apk/chainguard/docker-oci-entrypoint-fipspkg:apk/chainguard/docker-rootlesspkg:apk/chainguard/docker-rootless-fipspkg:apk/chainguard/dogstatsd-7.77pkg:apk/chainguard/dogstatsd-7.78pkg:apk/chainguard/flannelpkg:apk/chainguard/flannel-compatpkg:apk/chainguard/flannel-fipspkg:apk/chainguard/flannel-fips-compatpkg:apk/chainguard/istio-1.25pkg:apk/chainguard/istio-1.26pkg:apk/chainguard/istio-1.27pkg:apk/chainguard/istio-1.28pkg:apk/chainguard/istio-cni-1.25pkg:apk/chainguard/istio-cni-1.25-compatpkg:apk/chainguard/istio-cni-1.26pkg:apk/chainguard/istio-cni-1.26-compatpkg:apk/chainguard/istio-cni-1.27pkg:apk/chainguard/istio-cni-1.27-compatpkg:apk/chainguard/istio-cni-1.28pkg:apk/chainguard/istio-cni-1.28-compatpkg:apk/chainguard/istio-cni-fips-1.25pkg:apk/chainguard/istio-cni-fips-1.25-compatpkg:apk/chainguard/istio-cni-fips-1.26pkg:apk/chainguard/istio-cni-fips-1.26-compatpkg:apk/chainguard/istio-cni-fips-1.28pkg:apk/chainguard/istio-cni-fips-1.28-compatpkg:apk/chainguard/istioctl-1.25pkg:apk/chainguard/istioctl-1.26pkg:apk/chainguard/istioctl-1.27pkg:apk/chainguard/istioctl-1.28pkg:apk/chainguard/istioctl-bash-completion-1.25pkg:apk/chainguard/istioctl-bash-completion-1.26pkg:apk/chainguard/istioctl-bash-completion-1.27pkg:apk/chainguard/istioctl-bash-completion-1.28pkg:apk/chainguard/istioctl-zsh-completion-1.25pkg:apk/chainguard/istioctl-zsh-completion-1.26pkg:apk/chainguard/istioctl-zsh-completion-1.27pkg:apk/chainguard/istioctl-zsh-completion-1.28pkg:apk/chainguard/istio-fips-1.25pkg:apk/chainguard/istio-fips-1.26pkg:apk/chainguard/istio-fips-1.28pkg:apk/chainguard/istio-install-cni-1.25pkg:apk/chainguard/istio-install-cni-1.25-compatpkg:apk/chainguard/istio-install-cni-1.26pkg:apk/chainguard/istio-install-cni-1.26-compatpkg:apk/chainguard/istio-install-cni-1.27pkg:apk/chainguard/istio-install-cni-1.27-compatpkg:apk/chainguard/istio-install-cni-1.28pkg:apk/chainguard/istio-install-cni-1.28-compatpkg:apk/chainguard/istio-install-cni-fips-1.25pkg:apk/chainguard/istio-install-cni-fips-1.25-compatpkg:apk/chainguard/istio-install-cni-fips-1.26pkg:apk/chainguard/istio-install-cni-fips-1.26-compatpkg:apk/chainguard/istio-install-cni-fips-1.27pkg:apk/chainguard/istio-install-cni-fips-1.28pkg:apk/chainguard/istio-install-cni-fips-1.28-compatpkg:apk/chainguard/istio-pilot-agent-1.25pkg:apk/chainguard/istio-pilot-agent-1.25-compatpkg:apk/chainguard/istio-pilot-agent-1.26pkg:apk/chainguard/istio-pilot-agent-1.26-compatpkg:apk/chainguard/istio-pilot-agent-1.27pkg:apk/chainguard/istio-pilot-agent-1.27-compatpkg:apk/chainguard/istio-pilot-agent-1.28pkg:apk/chainguard/istio-pilot-agent-1.28-compatpkg:apk/chainguard/istio-pilot-agent-fips-1.25pkg:apk/chainguard/istio-pilot-agent-fips-1.25-compatpkg:apk/chainguard/istio-pilot-agent-fips-1.26pkg:apk/chainguard/istio-pilot-agent-fips-1.26-compatpkg:apk/chainguard/istio-pilot-agent-fips-1.28pkg:apk/chainguard/istio-pilot-agent-fips-1.28-compatpkg:apk/chainguard/istio-pilot-discovery-1.25pkg:apk/chainguard/istio-pilot-discovery-1.26pkg:apk/chainguard/istio-pilot-discovery-1.26-compatpkg:apk/chainguard/istio-pilot-discovery-1.27pkg:apk/chainguard/istio-pilot-discovery-1.27-compatpkg:apk/chainguard/istio-pilot-discovery-1.28pkg:apk/chainguard/istio-pilot-discovery-1.28-compatpkg:apk/chainguard/istio-pilot-discovery-fips-1.25pkg:apk/chainguard/istio-pilot-discovery-fips-1.26pkg:apk/chainguard/istio-pilot-discovery-fips-1.28pkg:apk/chainguard/k3spkg:apk/chainguard/k3s-1.33pkg:apk/chainguard/k3s-staticpkg:apk/chainguard/k3s-static-1.33pkg:apk/chainguard/kuma-2.10pkg:apk/chainguard/kuma-2.11pkg:apk/chainguard/kuma-2.12pkg:apk/chainguard/kuma-cni-2.10pkg:apk/chainguard/kuma-cni-2.11pkg:apk/chainguard/kuma-cni-2.12pkg:apk/chainguard/kuma-cni-compat-2.10pkg:apk/chainguard/kuma-cni-compat-2.11pkg:apk/chainguard/kuma-cni-compat-2.12pkg:apk/chainguard/kuma-cp-2.10pkg:apk/chainguard/kuma-cp-2.11pkg:apk/chainguard/kuma-cp-2.12pkg:apk/chainguard/kumactl-2.10pkg:apk/chainguard/kumactl-2.11pkg:apk/chainguard/kumactl-2.12pkg:apk/chainguard/kuma-dp-2.10pkg:apk/chainguard/kuma-dp-2.11pkg:apk/chainguard/kuma-dp-2.12pkg:apk/chainguard/kuma-install-cni-2.10pkg:apk/chainguard/kuma-install-cni-2.11pkg:apk/chainguard/kuma-install-cni-2.12pkg:apk/chainguard/multus-cnipkg:apk/chainguard/multus-cni-compatpkg:apk/chainguard/multus-cni-fipspkg:apk/chainguard/multus-cni-fips-compatpkg:apk/chainguard/nerdctlpkg:apk/chainguard/nerdctl-fipspkg:apk/chainguard/podmanpkg:apk/chainguard/podman-docpkg:apk/chainguard/rke2-runtime-1.31pkg:apk/chainguard/rke2-runtime-1.31-chartspkg:apk/chainguard/rke2-runtime-1.32pkg:apk/chainguard/rke2-runtime-1.32-chartspkg:apk/chainguard/rke2-runtime-1.33pkg:apk/chainguard/rke2-runtime-1.33-chartspkg:apk/chainguard/rke2-runtime-1.33-compatpkg:apk/chainguard/rke2-runtime-1.34pkg:apk/chainguard/rke2-runtime-1.34-chartspkg:apk/chainguard/rootlesskitpkg:apk/chainguard/rootlesskit-config-nonrootpkg:apk/chainguard/rootlesskit-config-nonroot-fipspkg:apk/chainguard/rootlesskit-fipspkg:apk/wolfi/azure-ipampkg:apk/wolfi/azure-ipam-dropgzpkg:apk/wolfi/buildahpkg:apk/wolfi/buildctlpkg:apk/wolfi/buildkitdpkg:apk/wolfi/calico-3.30pkg:apk/wolfi/calico-3.31pkg:apk/wolfi/calico-apiserver-3.30pkg:apk/wolfi/calico-apiserver-3.31pkg:apk/wolfi/calico-apiserver-compat-3.30pkg:apk/wolfi/calico-apiserver-compat-3.31pkg:apk/wolfi/calico-app-policy-3.30pkg:apk/wolfi/calico-app-policy-3.31pkg:apk/wolfi/calico-cni-3.30pkg:apk/wolfi/calico-cni-3.31pkg:apk/wolfi/calico-cni-compat-3.30pkg:apk/wolfi/calico-cni-compat-3.31pkg:apk/wolfi/calicoctl-3.30pkg:apk/wolfi/calicoctl-3.31pkg:apk/wolfi/calico-felix-3.30pkg:apk/wolfi/calico-goldmane-3.30pkg:apk/wolfi/calico-goldmane-3.31pkg:apk/wolfi/calico-key-cert-provisioner-3.30pkg:apk/wolfi/calico-key-cert-provisioner-3.31pkg:apk/wolfi/calico-kube-controllers-3.30pkg:apk/wolfi/calico-kube-controllers-3.31pkg:apk/wolfi/calico-node-3.30pkg:apk/wolfi/calico-node-3.31pkg:apk/wolfi/calico-pod2daemon-3.30pkg:apk/wolfi/calico-pod2daemon-3.31pkg:apk/wolfi/calico-pod2daemon-flexvol-compat-3.30pkg:apk/wolfi/calico-typha-client-3.30pkg:apk/wolfi/calico-typha-client-3.31pkg:apk/wolfi/calico-typhad-3.30pkg:apk/wolfi/calico-typhad-3.31pkg:apk/wolfi/calico-whisker-3.30pkg:apk/wolfi/calico-whisker-3.31pkg:apk/wolfi/calico-whisker-backend-3.30pkg:apk/wolfi/calico-whisker-backend-3.31pkg:apk/wolfi/containerd-2pkg:apk/wolfi/containerd-service-2pkg:apk/wolfi/containerd-service-2.0pkg:apk/wolfi/containerd-shim-runc-v2-2pkg:apk/wolfi/containerd-shim-runc-v2-2.0pkg:apk/wolfi/containerd-stress-2pkg:apk/wolfi/containerd-stress-2.0pkg:apk/wolfi/ctr-2pkg:apk/wolfi/ctr-2.0pkg:apk/wolfi/datadog-agent-7.77pkg:apk/wolfi/datadog-agent-7.78pkg:apk/wolfi/dockerpkg:apk/wolfi/docker-config-mirror-gcrpkg:apk/wolfi/dockerdpkg:apk/wolfi/docker-dindpkg:apk/wolfi/docker-dind-compatpkg:apk/wolfi/dockerd-oci-entrypointpkg:apk/wolfi/dockerd-servicepkg:apk/wolfi/docker-initpkg:apk/wolfi/docker-modprobe-compatpkg:apk/wolfi/docker-oci-entrypointpkg:apk/wolfi/docker-rootlesspkg:apk/wolfi/dogstatsd-7.77pkg:apk/wolfi/dogstatsd-7.78pkg:apk/wolfi/flannelpkg:apk/wolfi/flannel-compatpkg:apk/wolfi/istio-1.25pkg:apk/wolfi/istio-1.26pkg:apk/wolfi/istio-1.27pkg:apk/wolfi/istio-1.28pkg:apk/wolfi/istio-cni-1.25pkg:apk/wolfi/istio-cni-1.25-compatpkg:apk/wolfi/istio-cni-1.26pkg:apk/wolfi/istio-cni-1.26-compatpkg:apk/wolfi/istio-cni-1.27pkg:apk/wolfi/istio-cni-1.27-compatpkg:apk/wolfi/istio-cni-1.28pkg:apk/wolfi/istio-cni-1.28-compatpkg:apk/wolfi/istioctl-1.25pkg:apk/wolfi/istioctl-1.26pkg:apk/wolfi/istioctl-1.27pkg:apk/wolfi/istioctl-1.28pkg:apk/wolfi/istioctl-bash-completion-1.25pkg:apk/wolfi/istioctl-bash-completion-1.26pkg:apk/wolfi/istioctl-bash-completion-1.27pkg:apk/wolfi/istioctl-bash-completion-1.28pkg:apk/wolfi/istioctl-zsh-completion-1.26pkg:apk/wolfi/istioctl-zsh-completion-1.27pkg:apk/wolfi/istioctl-zsh-completion-1.28pkg:apk/wolfi/istio-install-cni-1.25pkg:apk/wolfi/istio-install-cni-1.25-compatpkg:apk/wolfi/istio-install-cni-1.26pkg:apk/wolfi/istio-install-cni-1.26-compatpkg:apk/wolfi/istio-install-cni-1.27pkg:apk/wolfi/istio-install-cni-1.27-compatpkg:apk/wolfi/istio-install-cni-1.28pkg:apk/wolfi/istio-install-cni-1.28-compatpkg:apk/wolfi/istio-pilot-agent-1.25pkg:apk/wolfi/istio-pilot-agent-1.25-compatpkg:apk/wolfi/istio-pilot-agent-1.26pkg:apk/wolfi/istio-pilot-agent-1.26-compatpkg:apk/wolfi/istio-pilot-agent-1.27pkg:apk/wolfi/istio-pilot-agent-1.27-compatpkg:apk/wolfi/istio-pilot-agent-1.28pkg:apk/wolfi/istio-pilot-agent-1.28-compatpkg:apk/wolfi/istio-pilot-discovery-1.25pkg:apk/wolfi/istio-pilot-discovery-1.26pkg:apk/wolfi/istio-pilot-discovery-1.26-compatpkg:apk/wolfi/istio-pilot-discovery-1.27pkg:apk/wolfi/istio-pilot-discovery-1.27-compatpkg:apk/wolfi/istio-pilot-discovery-1.28pkg:apk/wolfi/istio-pilot-discovery-1.28-compatpkg:apk/wolfi/k3spkg:apk/wolfi/k3s-1.33pkg:apk/wolfi/k3s-staticpkg:apk/wolfi/k3s-static-1.33pkg:apk/wolfi/kuma-2.10pkg:apk/wolfi/kuma-2.11pkg:apk/wolfi/kuma-2.12pkg:apk/wolfi/kuma-cni-2.10pkg:apk/wolfi/kuma-cni-2.11pkg:apk/wolfi/kuma-cni-2.12pkg:apk/wolfi/kuma-cni-compat-2.10pkg:apk/wolfi/kuma-cni-compat-2.11pkg:apk/wolfi/kuma-cni-compat-2.12pkg:apk/wolfi/kuma-cp-2.10pkg:apk/wolfi/kuma-cp-2.11pkg:apk/wolfi/kuma-cp-2.12pkg:apk/wolfi/kumactl-2.10pkg:apk/wolfi/kumactl-2.11pkg:apk/wolfi/kumactl-2.12pkg:apk/wolfi/kuma-dp-2.10pkg:apk/wolfi/kuma-dp-2.11pkg:apk/wolfi/kuma-dp-2.12pkg:apk/wolfi/kuma-install-cni-2.10pkg:apk/wolfi/kuma-install-cni-2.11pkg:apk/wolfi/kuma-install-cni-2.12pkg:apk/wolfi/multus-cnipkg:apk/wolfi/multus-cni-compatpkg:apk/wolfi/nerdctlpkg:apk/wolfi/podmanpkg:apk/wolfi/podman-docpkg:apk/wolfi/rootlesskitpkg:apk/wolfi/rootlesskit-config-nonrootpkg:golang/github.com/containernetworking/pluginspkg:rpm/opensuse/docker&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Leap%2015.6
< 1.20.5-r2+ 384 more
- (no CPE)range: < 1.20.5-r2
- (no CPE)range: < 1.20.5-r2
- (no CPE)range: < 1.20.5-r2
- (no CPE)range: < 0.4.0-r7
- (no CPE)range: < 0.4.0-r7
- (no CPE)range: < 1.42.2-r2
- (no CPE)range: < 0.26.2-r2
- (no CPE)range: < 0.26.2-r3
- (no CPE)range: < 0.26.2-r2
- (no CPE)range: < 0.26.2-r3
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 7.77.3-r14
- (no CPE)range: < 7.78.4-r9
- (no CPE)range: < 7.77.3-r12
- (no CPE)range: < 7.78.4-r6
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r3
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r3
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r3
- (no CPE)range: < 28.5.2-r3
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r3
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r3
- (no CPE)range: < 28.5.2-r3
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r3
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r3
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r3
- (no CPE)range: < 7.77.3-r14
- (no CPE)range: < 7.78.4-r9
- (no CPE)range: < 0.27.4-r6
- (no CPE)range: < 0.27.4-r6
- (no CPE)range: < 0.27.4-r4
- (no CPE)range: < 0.27.4-r4
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r6
- (no CPE)range: < 1.25.5-r6
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r6
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r6
- (no CPE)range: < 1.25.5-r6
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r6
- (no CPE)range: < 1.25.5-r6
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r6
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.35.3.1-r0
- (no CPE)range: < 1.33.10.1-r0
- (no CPE)range: < 1.35.3.1-r0
- (no CPE)range: < 1.33.10.1-r0
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 4.2.3-r2
- (no CPE)range: < 4.2.3-r2
- (no CPE)range: < 4.2.3-r3
- (no CPE)range: < 4.2.3-r3
- (no CPE)range: < 2.2.0-r5
- (no CPE)range: < 2.2.0-r3
- (no CPE)range: < 5.7.1-r1
- (no CPE)range: < 5.7.1-r1
- (no CPE)range: < 1.31.14.2.1-r3
- (no CPE)range: < 1.31.14.2.1-r3
- (no CPE)range: < 1.32.10.2.1-r3
- (no CPE)range: < 1.32.10.2.1-r3
- (no CPE)range: < 1.33.6.2.1-r4
- (no CPE)range: < 1.33.6.2.1-r4
- (no CPE)range: < 1.33.6.2.1-r4
- (no CPE)range: < 1.34.2.2.1-r1
- (no CPE)range: < 1.34.2.2.1-r1
- (no CPE)range: < 2.3.5-r9
- (no CPE)range: < 2.3.5-r9
- (no CPE)range: < 2.3.5-r7
- (no CPE)range: < 2.3.5-r7
- (no CPE)range: < 0.4.0-r7
- (no CPE)range: < 0.4.0-r7
- (no CPE)range: < 1.42.2-r2
- (no CPE)range: < 0.26.2-r2
- (no CPE)range: < 0.26.2-r2
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 3.30.5-r3
- (no CPE)range: < 3.31.2-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 2.2.0-r4
- (no CPE)range: < 7.77.3-r14
- (no CPE)range: < 7.78.4-r9
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 28.5.2-r8
- (no CPE)range: < 7.77.3-r14
- (no CPE)range: < 7.78.4-r9
- (no CPE)range: < 0.27.4-r6
- (no CPE)range: < 0.27.4-r6
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.25.5-r5
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.26.7-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.27.4-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.28.1-r1
- (no CPE)range: < 1.35.3.1-r0
- (no CPE)range: < 1.33.10.1-r0
- (no CPE)range: < 1.35.3.1-r0
- (no CPE)range: < 1.33.10.1-r0
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 2.10.8-r3
- (no CPE)range: < 2.11.7-r3
- (no CPE)range: < 2.12.3-r3
- (no CPE)range: < 4.2.3-r2
- (no CPE)range: < 4.2.3-r2
- (no CPE)range: < 2.2.0-r5
- (no CPE)range: < 5.7.1-r1
- (no CPE)range: < 5.7.1-r1
- (no CPE)range: < 2.3.5-r9
- (no CPE)range: < 2.3.5-r9
- (no CPE)range: >= 1.6.0, < 1.9.0
- (no CPE)range: < 29.2.1_ce-37.1
- (no CPE)range: < 0.0.20251230T014957-150000.1.134.1
Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-jv3w-x3r3-g6rmghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-67499ghsaADVISORY
- github.com/containernetworking/plugins/commit/9b3772e1a7abf93cbb7c6526a28bc0d27b830e02ghsaWEB
- github.com/containernetworking/plugins/pull/1210ghsax_refsource_MISCWEB
- github.com/containernetworking/plugins/releases/tag/v1.9.0ghsax_refsource_MISCWEB
- github.com/containernetworking/plugins/security/advisories/GHSA-jv3w-x3r3-g6rmghsax_refsource_CONFIRMWEB
- pkg.go.dev/vuln/GO-2026-4222ghsaWEB
News mentions
0No linked articles in our index yet.