CVE-2026-26963
Cilium may not enforce host firewall policies when Native Routing, WireGuard and Node Encryption are enabled
6.1
MEDIUM
CVSS 3.1
EPSS 0.01%
Description
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Versions 1.18.0 through 1.18.5 will incorrectly permit traffic from Pods on other nodes when Native Routing, WireGuard and Node Encryption are enabled. This issue has been fixed in version 1.18.6.
How to fix CVE-2026-26963
To remediate CVE-2026-26963, upgrade the affected package to a fixed version below.
- —upgrade to 1.18.6 or later
- —upgrade to 1.18.6 or later
- —upgrade to 1.18.6 or later
- —upgrade to 1.18.6 or later
- —upgrade to 1.18.6 or later
Is CVE-2026-26963 being exploited?
Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.
Affected packages (5)
- >= 1.18.0, < 1.18.6
- >= 1.18.0, < 1.18.6
- >= 1.18.0, < 1.18.6
- >= 1.18.0, < 1.18.6
- >= 1.18.0, < 1.18.6
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.1 | CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N |