pkg:Bitnami/hubble-ui

18 total CVEsHIGH6MEDIUM10LOW2

✅ Check your installed version

All known vulnerabilities

  • HIGH8.8CVE-2022-29178Access to Unix domain socket can lead to privileges escalation in Cilium
    from 0, < 1.9.16, >= 1.10.0, < 1.10.11, >= 1.11.0, < 1.11.5
  • HIGH8.0CVE-2024-28860Insecure IPsec transparent encryption in github.com/cilium/cilium
    >= 1.4.0, < 1.13.14, >= 1.14.0, < 1.14.9, >= 1.15.0, < 1.15.3
  • HIGH7.9CVE-2024-37307Cilium leaks sensitive information in cilium-bugtool
    >= 1.13.0, < 1.13.17, >= 1.14.0, < 1.14.12, >= 1.15.0, < 1.15.6
  • HIGH7.5CVE-2022-29179Improper Privilege Management in Cilium in github.com/cilium/cilium
    from 0, < 1.9.16, >= 1.10.0, < 1.10.11, >= 1.11.0, < 1.11.5
  • HIGH7.2CVE-2024-28248Intermittent HTTP policy bypass
    >= 1.13.9, < 1.13.13, >= 1.14.0, < 1.14.8, >= 1.15.0, < 1.15.2
  • HIGH7.2CVE-2023-29002Debug mode leaks confidential data in Cilium
    >= 1.7.0, < 1.11.16, >= 1.12.0, < 1.12.9, >= 1.13.0, < 1.13.2
  • MEDIUM6.9CVE-2023-41333Cilium vulnerable to bypass of namespace restrictions in CiliumNetworkPolicy
    from 0, < 1.12.14, >= 1.13.0, < 1.13.7, >= 1.14.0, < 1.14.2
  • MEDIUM6.5CVE-2023-27595Cilium eBPF filters may be temporarily removed during agent restart in github.com/cilium/cilium
    >= 1.13.0, <= 1.13.0
  • MEDIUM6.1CVE-2024-28250Unencrypted traffic between nodes with WireGuard in github.com/cilium/cilium
    >= 1.14.0, < 1.14.8, >= 1.15.0, < 1.15.2
  • MEDIUM6.1CVE-2024-28249Unencrypted traffic between nodes when using IPsec and L7 policies
    from 0, < 1.13.13, >= 1.14.0, < 1.14.8, >= 1.15.0, < 1.15.2
  • MEDIUM6.1CVE-2024-25631Unencrypted traffic between pods when using Wireguard and an external kvstore
    from 0, < 1.14.7
  • MEDIUM6.1CVE-2024-25630Unencrypted ingress/health traffic when using Wireguard transparent encryption in github.com/cilium/cilium
    >= 1.14.0, < 1.14.7
  • MEDIUM5.4CVE-2023-39347Kubernetes users may update Pod labels to bypass network policy in github.com/cilium/cilium
    from 0, < 1.12.14, >= 1.13.0, < 1.13.7, >= 1.14.0, < 1.14.2
  • MEDIUM5.3CVE-2023-30851Potential HTTP policy bypass when using header rules in Cilium
    from 0, < 1.11.16, >= 1.12.0, < 1.12.9, >= 1.13.0, < 1.13.2
  • MEDIUM4.4CVE-2023-27593cilium-agent container can access the host via `hostPath` mount
    from 0, < 1.11.15, >= 1.12.0, < 1.12.8, >= 1.13.0, < 1.13.1
  • MEDIUM4.2CVE-2023-27594Potential network policy bypass when routing IPv6 traffic in github.com/cilium/cilium
    from 0, < 1.11.15, >= 1.12.0, < 1.12.8, >= 1.13.0, < 1.13.1
  • LOW3.5CVE-2023-41332Specific Cilium configurations vulnerable to DoS via Kubernetes annotations
    from 0, < 1.12.14, >= 1.13.0, < 1.13.7, >= 1.14.0, < 1.14.2
  • LOW3.4CVE-2023-34242Cilium vulnerable to information leakage via incorrect ReferenceGrant handling in github.com/cilium/cilium
    from 0, < 1.13.4