Cilium intermittent HTTP policy bypass

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.13.9 and prior to versions 1.13.13, 1.14.8, and 1.15.2, Cilium's HTTP policies are not consistently applied to all traffic in the scope of the policies, leading to HTTP traffic being incorrectly and intermittently forwarded when it should be dropped. This issue has been patched in Cilium 1.15.2, 1.14.8, and 1.13.13. There are no known workarounds for this issue.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

保护机制失效

Cilium 安全漏洞

Cilium是一个开源软件。用于提供和透明地保护应用程序工作负载（如应用程序容器或进程）之间的网络连接和负载平衡。 Cilium存在安全漏洞，该漏洞源于HTTP策略并未一致地应用于策略范围内的所有流量，从而导致HTTP流量间歇性转发。

N/A

N/A