Home > Vulnerability Database > WS-2021-0122

Mend.io Vulnerability Database

WS-2021-0122

Good to know:

Date: May 21, 2021

Under certain conditions, ICMP Echo Request sent to a Cilium endpoint from an actor may bypass a network policy which disallows access from the actor to the endpoint, but allows from the endpoint to the actor. This does NOT apply to UDP and TCP traffic. The issue has been fixed in Cilium versions v1.7.15, v1.8.8 and v1.9.5.

Language: Go

Severity Score

5.6

Related Resources (2)

Url: https://github.com/cilium/cilium/commit/dfb008a9099c4da1e0fd964c899c43ee13280b0e

Url: https://www.mend.io/vulnerability-database/WS-2021-0122

Severity Score

5.6

Weakness Type (CWE)

Authentication Bypass Using an Alternate Path or Channel

CWE-288

Top Fix

Upgrade Version

Upgrade to version v1.7.15,v1.8.8,v1.9.5

Learn More

CVSS v3.1

Base Score:	5.6
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

Mend.io Vulnerability Database

We found results for “”

WS-2021-0122

Good to know:

Date: May 21, 2021

Language: Go

Severity Score

Related Resources (2)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?