A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perform man-in-the-middle (MitM) attacks. A malicious container can exploit this flaw by sending rogue IPv6 router advertisements to the host or other containers, to redirect traffic to the malicious container.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linuxfoundation cni network plugins |
||
redhat enterprise linux 7.0 |
||
redhat enterprise linux 8.0 |
||
fedoraproject fedora 32 |
||
redhat openshift container platform 4.0 |