CVE-2022-0567

Name of the Vulnerable Software and Affected Versions ovn-kubernetes (affected versions not specified)

Description A flaw in ovn-kubernetes allows a system administrator or privileged attacker to create an egress network policy that bypasses existing ingress policies of other pods in a cluster. This results in information disclosure and other attacks on pods that should not be reachable. The issue is related to insufficient input validation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.