​
DirectorySecurity Advisories
Sign In
Security Advisories

CGA-4xfj-hxhp-4v28

Published

Last updated

https://images.chainguard.dev/security/CGA-4xfj-hxhp-4v28
Package

cni-plugins-fips

Latest Update
Not affected
Aliases
  • CVE-2020-10749
  • GHSA-fx6x-h9g4-56f8

Severity

6.0

Medium

CVSS V3

Summary

containernetworking/plugins vulnerable to MitM attacks

Description

A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perform man-in-the-middle (MitM) attacks. A malicious container can exploit this flaw by sending rogue IPv6 router advertisements to the host or other containers, to redirect traffic to the malicious container.

References

Updates

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsOpen SourceCareersNewsroomLegal

Resources

Unchained BlogResearchEventsTrust CenterDocumentation