Vulnerability Description
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.13.13, 1.14.8, and 1.15.2, in Cilium clusters with IPsec enabled and traffic matching Layer 7 policies, IPsec-eligible traffic between a node's Envoy proxy and pods on other nodes is sent unencrypted and IPsec-eligible traffic between a node's DNS proxy and pods on other nodes is sent unencrypted. This issue has been resolved in Cilium 1.15.2, 1.14.8, and 1.13.13. There is no known workaround for this issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cilium | Cilium | < 1.13.13 |
Related Weaknesses (CWE)
References
- https://github.com/cilium/cilium/releases/tag/v1.13.13Release Notes
- https://github.com/cilium/cilium/releases/tag/v1.14.8Release Notes
- https://github.com/cilium/cilium/releases/tag/v1.15.2Release Notes
- https://github.com/cilium/cilium/security/advisories/GHSA-j89h-qrvr-xc36Vendor Advisory
- https://github.com/cilium/cilium/releases/tag/v1.13.13Release Notes
- https://github.com/cilium/cilium/releases/tag/v1.14.8Release Notes
- https://github.com/cilium/cilium/releases/tag/v1.15.2Release Notes
- https://github.com/cilium/cilium/security/advisories/GHSA-j89h-qrvr-xc36Vendor Advisory
FAQ
What is CVE-2024-28249?
CVE-2024-28249 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.13.13, 1.14.8, and 1.15.2, in Cilium clusters with IPsec enabled and traffic matching Lay...
How severe is CVE-2024-28249?
CVE-2024-28249 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-28249?
Check the references section above for vendor advisories and patch information. Affected products include: Cilium Cilium.