CVE-2024-28248

CVSS v3.1

7.2

High

Vector

AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Cilium versions 1.13.9 through 1.13.12 Cilium versions 1.14.0 through 1.14.7 Cilium versions 1.15.0 through 1.15.1

Description Cilium's HTTP policies are not consistently applied to all traffic in the scope of the policies, leading to HTTP traffic being incorrectly and intermittently forwarded when it should be dropped.

Recommendations For Cilium versions 1.13.9 through 1.13.12, update to version 1.13.13 to resolve the issue. For Cilium versions 1.14.0 through 1.14.7, update to version 1.14.8 to resolve the issue. For Cilium versions 1.15.0 through 1.15.1, update to version 1.15.2 to resolve the issue.

Exploit

Fix

Protection Mechanism Failure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-693

Related Identifiers

BIT-CILIUM-2024-28248

BIT-CILIUM-OPERATOR-2024-28248

BIT-CILIUM-PROXY-2024-28248

BIT-HUBBLE-2024-28248

BIT-HUBBLE-RELAY-2024-28248

BIT-HUBBLE-UI-2024-28248

BIT-HUBBLE-UI-BACKEND-2024-28248

CVE-2024-28248

GHSA-68MJ-9PJQ-MC85

GO-2024-2653

Affected Products

Cilium

CVE-2024-28248

Weakness Enumeration

Related Identifiers

Affected Products

References · 21