Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who are using CRDs to store Cilium state (the default configuration) and Wireguard transparent encryption, traffic to/from the Ingress and health endpoints is not encrypted. This issue affects Cilium v1.14 before v1.14.7 and has been patched in Cilium v1.14.7. There is no workaround to this issue.
Metrics
Affected Vendors & Products
References
History
Wed, 18 Dec 2024 17:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Cilium
Cilium cilium |
|
Weaknesses | CWE-319 | |
CPEs | cpe:2.3:a:cilium:cilium:*:*:*:*:*:*:*:* | |
Vendors & Products |
Cilium
Cilium cilium |
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-02-20T17:53:16.685Z
Updated: 2024-08-01T23:44:09.747Z
Reserved: 2024-02-08T22:26:33.512Z
Link: CVE-2024-25630
Vulnrichment
Updated: 2024-08-01T23:44:09.747Z
NVD
Status : Analyzed
Published: 2024-02-20T18:15:52.930
Modified: 2024-12-18T17:17:18.427
Link: CVE-2024-25630
Redhat
No data.