Skip to main content

Cilium CVE-2024-52529

MEDIUM
Improper Handling of Exceptional Conditions (CWE-755)
2024-11-25 security-advisories@github.com
5.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.8 MEDIUM
AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
Low
Integrity
None
Availability
None

Lifecycle Timeline

1
CVE Published
Nov 25, 2024 - 19:15 nvd
MEDIUM 5.8

DescriptionNVD

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For users with the following configuration: 1. An allow policy that selects a Layer 3 destination and a port range AND 2. A Layer 7 allow policy that selects a specific port within the first policy's range the Layer 7 enforcement would not occur for the traffic selected by the Layer 7 policy. This issue only affects users who use Cilium's port range functionality, which was introduced in Cilium v1.16. This issue is patched in PR #35150. This issue affects Cilium v1.16 between v1.16.0 and v1.16.3 inclusive. This issue is patched in Cilium v1.16.4. Users are advised to upgrade. Users with network policies that match the pattern described above can work around the issue by rewriting any policies that use port ranges to individually specify the ports permitted for traffic.

AnalysisAI

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Technical ContextAI

This vulnerability is classified under CWE-755. Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For users with the following configuration: 1. An allow policy that selects a Layer 3 destination and a port range AND 2. A Layer 7 allow policy that selects a specific port within the first policy's range the Layer 7 enforcement would not occur for the traffic selected by the Layer 7 policy. This issue only affects users who use Cilium's port range functionality, which was introduced in Cilium v1.16. This issue is patched in PR #35150.16 between v1.16.0 and v1.16.3 inclusive. This issue is patched in Cilium v1.16.4. Users are advised to upgrade. Users with network policies that match the pattern described above can work around the issue by rewriting any policies that use port ranges to individually specify the ports permitted for traffic. Affected products include: Cilium.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

More in Cilium

View all
CVE-2023-39347 CRITICAL POC
9.0 Sep 27

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Rated critical severity (CVSS

CVE-2023-27595 CRITICAL
9.8 Mar 17

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Rated critical severity (CVSS

CVE-2024-47825 HIGH
8.7 Oct 21

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Rated high severity (CVSS 8.7

CVE-2022-29179 HIGH
8.2 May 20

Cilium is open source software for providing and securing network connectivity and loadbalancing between application wor

CVE-2022-29178 HIGH
8.2 May 20

Cilium is open source software for providing and securing network connectivity and loadbalancing between application wor

CVE-2023-41333 HIGH
8.1 Sep 27

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Rated high severity (CVSS 8.1

CVE-2023-41332 LOW POC
3.5 Sep 27

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Rated low severity (CVSS 3.5)

CVE-2023-27594 HIGH
7.3 Mar 17

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Rated high severity (CVSS 7.3

CVE-2024-42486 HIGH
7.2 Aug 16

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Rated high severity (CVSS 7.2

CVE-2024-28248 HIGH
7.2 Mar 18

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Rated high severity (CVSS 7.2

CVE-2024-42488 MEDIUM
6.8 Aug 15

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Rated medium severity (CVSS 6

CVE-2024-28860 MEDIUM
6.8 Mar 27

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Rated medium severity (CVSS 6

Share

CVE-2024-52529 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy