PT-2021-20799 · Unknown · Ovn Kubernetes
Przemyslaw Roguski
·
Published
2021-06-02
·
Updated
2023-02-12
·
CVE-2021-3499
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
OVN Kubernetes versions up to and including 0.3.0
Description:
A vulnerability was found in OVN Kubernetes where the Egress Firewall does not reliably apply firewall rules when there are multiple DNS rules. This could lead to a potential loss of confidentiality, integrity, or availability of a service.
Recommendations:
For OVN Kubernetes versions up to and including 0.3.0, consider restricting the use of multiple DNS rules in the Egress Firewall until a patch is available. As a temporary workaround, review and manually apply firewall rules to ensure service confidentiality, integrity, and availability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Incorrect Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ovn Kubernetes