pkg:Bitnami/hubble-ui-backend

All known vulnerabilities

• HIGH8.8CVE-2022-29178Incorrect Default Permissions in Cilium
  from 0, < 1.9.16, >= 1.10.0, < 1.10.11, >= 1.11.0, < 1.11.5
• HIGH8.0CVE-2024-28860Insecure IPsec transparent encryption in github.com/cilium/cilium
  >= 1.4.0, < 1.13.14, >= 1.14.0, < 1.14.9, >= 1.15.0, < 1.15.3
• HIGH7.9CVE-2024-37307Cilium leaks sensitive information in cilium-bugtool
  >= 1.13.0, < 1.13.17, >= 1.14.0, < 1.14.12, >= 1.15.0, < 1.15.6
• HIGH7.5Improper Privilege Management in Cilium
  from 0, < 1.9.16, >= 1.10.0, < 1.10.11, >= 1.11.0, < 1.11.5
• HIGH7.2HTTP policy bypass in github.com/cilium/cilium
  >= 1.13.9, < 1.13.13, >= 1.14.0, < 1.14.8, >= 1.15.0, < 1.15.2
• HIGH7.2Debug mode leaks confidential data in Cilium
  >= 1.7.0, < 1.11.16, >= 1.12.0, < 1.12.9, >= 1.13.0, < 1.13.2
• MEDIUM6.9Bypass of namespace restrictions in CiliumNetworkPolicy
  from 0, < 1.12.14, >= 1.13.0, < 1.13.7, >= 1.14.0, < 1.14.2
• MEDIUM6.5Cilium eBPF filters may be temporarily removed during agent restart
  >= 1.13.0, <= 1.13.0
• MEDIUM6.1Unencrypted traffic between nodes with WireGuard in github.com/cilium/cilium
  >= 1.14.0, < 1.14.8, >= 1.15.0, < 1.15.2
• MEDIUM6.1Unencrypted traffic between nodes with IPsec in github.com/cilium/cilium
  from 0, < 1.13.13, >= 1.14.0, < 1.14.8, >= 1.15.0, < 1.15.2
• MEDIUM6.1Unencrypted traffic between pods when using Wireguard and an external kvstore in github.com/cilium/cilium
  from 0, < 1.14.7
• MEDIUM6.1Unencrypted ingress/health traffic when using Wireguard transparent encryption in github.com/cilium/cilium
  >= 1.14.0, < 1.14.7
• MEDIUM5.4Cilium NetworkPolicy bypass via pod labels
  from 0, < 1.12.14, >= 1.13.0, < 1.13.7, >= 1.14.0, < 1.14.2
• MEDIUM5.3Potential HTTP policy bypass when using header rules in Cilium
  from 0, < 1.11.16, >= 1.12.0, < 1.12.9, >= 1.13.0, < 1.13.2
• MEDIUM4.4cilium-agent container can access the host via `hostPath` mount
  from 0, < 1.11.15, >= 1.12.0, < 1.12.8, >= 1.13.0, < 1.13.1
• MEDIUM4.2Cilium vulnerable to potential network policy bypass when routing IPv6 traffic
  from 0, < 1.11.15, >= 1.12.0, < 1.12.8, >= 1.13.0, < 1.13.1
• LOW3.5Denial of service via Kubernetes annotations in specific Cilium configurations
  from 0, < 1.12.14, >= 1.13.0, < 1.13.7, >= 1.14.0, < 1.14.2
• LOW3.4Cilium vulnerable to information leakage via incorrect ReferenceGrant handling
  from 0, < 1.13.4