CVE-2024-28250 | Cilium up to 1.14.7/1.15.1 WireGuard missing encryption (GHSA-v6q2-4qr3-5cw6)

Posted by Angelo Barbosa | Mar 19, 2024 | CVE

A vulnerability was found in Cilium up to 1.14.7/1.15.1. It has been classified as problematic. Affected is an unknown function of the component WireGuard. The manipulation leads to missing encryption of sensitive data.

This vulnerability is traded as CVE-2024-28250. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-28250 | Cilium up to 1.14.7/1.15.1 WireGuard missing encryption (GHSA-v6q2-4qr3-5cw6)

Related Posts

CVE-2023-51775 | jose4j up to 0.9.3 on Java p2c denial of service

CVE-2024-41157 | OpenHarmony up to 4.1.0 use after free

CVE-2022-48693 | Linux Kernel up to 4.19.257/5.4.212/5.10.142/5.15.67/5.19.8 soc brcmstb_pm_probe memory leak

CVE-2024-32228 | FFmpeg 7.0 libavcodec/hevcdec.c hevc_frame_end buffer overflow