CVE-2022-0567

Published: Apr 20, 2022Modified: Nov 21, 2024

9.1

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Exploitability: 2.3 / Impact: 6.0

Source: NVD

Description

A flaw was found in ovn-kubernetes. This flaw allows a system administrator or privileged attacker to create an egress network policy that bypasses existing ingress policies of other pods in a cluster, allowing network traffic to access pods that should not be reachable. This issue results in information disclosure and other attacks on other pods that should not be reachable.

Affected (4)

Products: Ovn: Ovn Kubernetes

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Ovn Ovn Kubernetes	Before 4.7.47
Ovn Ovn Kubernetes	From 4.10.0 to 4.10.8
Ovn Ovn Kubernetes	From 4.8.0 to 4.8.36
Ovn Ovn Kubernetes	From 4.9.0 to 4.9.27

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

https://bugzilla.redhat.com/show_bug.cgi?id=2053326

Source: secalert@redhat.com

Issue TrackingThird Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=2053326

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingThird Party Advisory

Timeline

No history available yet.