CVE-2024-28250

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Mar 18, 2024
Updated: Jan 9, 2025
CWE ID 311
CWE ID 319

Summary

CVE-2024-28250 is a vulnerability affecting Cilium, a networking, observability, and security solution. In Cilium clusters with WireGuard enabled and Layer 7 policies, traffic between a node's Envoy proxy and pods on other nodes, as well as traffic between a node's DNS proxy and pods on other nodes, is transmitted unencrypted. This vulnerability exists in Cilium versions 1.14.0 through 1.14.7 and 1.15.1. To mitigate this issue, users can upgrade to Cilium 1.14.8 or 1.15.2 in native routing mode or Cilium 1.14.4 in tunneling mode with `encryption.wireguard.encapsulate` set to `true`. No known workarounds are available for this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share