Weave Net
1 CVEs
product
Monthly
In Weave Net before version 2.6.3, an attacker able to run a process as root in a container is able to respond to DNS requests from the host and thereby insert themselves as a fake service. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.
Privilege Escalation
Weave Net
NVD
GitHub
CVSS 3.1
5.8
EPSS
0.9%
EPSS 1%
CVSS 5.8
MEDIUM
PATCH
This Month
In Weave Net before version 2.6.3, an attacker able to run a process as root in a container is able to respond to DNS requests from the host and thereby insert themselves as a fake service. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.
Privilege Escalation
Weave Net
NVD
GitHub