Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who are using CRDs to store Cilium state (the default configuration) and Wireguard transparent encryption, traffic to/from the Ingress and health endpoints is not encrypted. This issue affects Cilium v1.14 before v1.14.7 and has been patched in Cilium v1.14.7. There is no workaround to this issue.
History

Wed, 18 Dec 2024 17:45:00 +0000

Type Values Removed Values Added
First Time appeared Cilium
Cilium cilium
Weaknesses CWE-319
CPEs cpe:2.3:a:cilium:cilium:*:*:*:*:*:*:*:*
Vendors & Products Cilium
Cilium cilium

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-02-20T17:53:16.685Z

Updated: 2024-08-01T23:44:09.747Z

Reserved: 2024-02-08T22:26:33.512Z

Link: CVE-2024-25630

cve-icon Vulnrichment

Updated: 2024-08-01T23:44:09.747Z

cve-icon NVD

Status : Analyzed

Published: 2024-02-20T18:15:52.930

Modified: 2024-12-18T17:17:18.427

Link: CVE-2024-25630

cve-icon Redhat

No data.