Skip to main content

Weave Net

1 CVEs product

Monthly

CVE-2020-11091 Go MEDIUM PATCH This Month

In Weave Net before version 2.6.3, an attacker able to run a process as root in a container is able to respond to DNS requests from the host and thereby insert themselves as a fake service. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.

Privilege Escalation Weave Net
NVD GitHub
CVSS 3.1
5.8
EPSS
0.9%
EPSS 1% CVSS 5.8
MEDIUM PATCH This Month

In Weave Net before version 2.6.3, an attacker able to run a process as root in a container is able to respond to DNS requests from the host and thereby insert themselves as a fake service. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.

Privilege Escalation Weave Net
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy