A flaw was found in ovn-kubernetes. This flaw allows a system administrator or privileged attacker to create an egress network policy that bypasses existing ingress policies of other pods in a cluster, allowing network traffic to access pods that should not be reachable. This issue results in information disclosure and other attacks on other pods that should not be reachable.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Ovn-kubernetes | Ovn | * | 4.7.47 (excluding) |
Ovn-kubernetes | Ovn | 4.8.0 (including) | 4.8.36 (excluding) |
Ovn-kubernetes | Ovn | 4.9.0 (including) | 4.9.27 (excluding) |
Ovn-kubernetes | Ovn | 4.10.0 (including) | 4.10.8 (excluding) |