Vulnerability Description
The CTFer.io Monitoring component is in charge of the collection, process and storage of various signals (i.e. logs, metrics and distributed traces). Prior to 0.2.1, due to a mis-written NetworkPolicy, a malicious actor can pivot from a component to any other namespace. This breaks the security-by-default property expected as part of the deployment program, leading to a potential lateral movement. This vulnerability is fixed in 0.2.1.
Related Weaknesses (CWE)
References
FAQ
What is CVE-2026-32720?
CVE-2026-32720 is a documented vulnerability. The CTFer.io Monitoring component is in charge of the collection, process and storage of various signals (i.e. logs, metrics and distributed traces). Prior to 0.2.1, due to a mis-written NetworkPolicy...
How severe is CVE-2026-32720?
CVSS scoring is not yet available for CVE-2026-32720. Check NVD for updates.
Is there a patch for CVE-2026-32720?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.