Overview
- Description
- Clusters using Calico (version 3.22.1 and below), Calico Enterprise (version 3.12.0 and below), may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not enabled. This may allow the attacker to intercept and reroute traffic to their compromised pod.
- Source
- psirt@tigera.io
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 4.2
- Exploitability score
- 1.2
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 5.5
- Impact score
- 4.9
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:N/I:P/A:P
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:tigera:calico_enterprise:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4E4832D7-F220-4771-8B01-54327CB11938",
"versionEndExcluding": "3.11.4"
},
{
"criteria": "cpe:2.3:a:tigera:calico_enterprise:3.12.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C6F8BCF7-776F-4B3B-AE3D-3004DA243527"
},
{
"criteria": "cpe:2.3:o:tigera:calico_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7A57465D-F482-4BF7-9250-B36F91743FD9",
"versionEndExcluding": "3.20.5"
},
{
"criteria": "cpe:2.3:o:tigera:calico_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "620C1B05-AAF2-4033-9EA9-79ECF60715DD",
"versionEndExcluding": "3.21.5",
"versionStartIncluding": "3.21.0"
},
{
"criteria": "cpe:2.3:o:tigera:calico_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "865171A1-8726-446C-8545-609E9D154A42",
"versionEndExcluding": "3.22.2",
"versionStartIncluding": "3.22.0"
}
],
"operator": "OR"
}
]
}
]