CVE-2024-33522
- EPSS 0.05%
- Veröffentlicht 29.04.2024 23:15:06
- Zuletzt bearbeitet 21.11.2024 09:17:04
In vulnerable versions of Calico (v3.27.2 and below), Calico Enterprise (v3.19.0-1, v3.18.1, v3.17.3 and below), and Calico Cloud (v19.2.0 and below), an attacker who has local access to the Kubernetes node, can escalate their privileges by exploitin...
CVE-2023-41378
- EPSS 0.23%
- Veröffentlicht 06.11.2023 16:15:42
- Zuletzt bearbeitet 21.11.2024 08:21:11
In certain conditions for Calico Typha (v3.26.2, v3.25.1 and below), and Calico Enterprise Typha (v3.17.1, v3.16.3, v3.15.3 and below), a client TLS handshake can block the Calico Typha server indefinitely, resulting in denial of service. The TLS Han...
CVE-2022-28224
- EPSS 0.28%
- Veröffentlicht 06.06.2022 18:15:09
- Zuletzt bearbeitet 30.09.2025 18:45:43
Clusters using Calico (version 3.22.1 and below), Calico Enterprise (version 3.12.0 and below), may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP ...