Filtered by vendor Ovn Subscriptions
Filtered by product Ovn-kubernetes Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-3499 2 Ovn, Redhat 2 Ovn-kubernetes, Openshift 2024-08-03 5.6 Medium
A vulnerability was found in OVN Kubernetes in versions up to and including 0.3.0 where the Egress Firewall does not reliably apply firewall rules when there is multiple DNS rules. It could lead to potentially lose of confidentiality, integrity or availability of a service.
CVE-2022-0567 2 Ovn, Redhat 2 Ovn-kubernetes, Openshift 2024-08-02 9.1 Critical
A flaw was found in ovn-kubernetes. This flaw allows a system administrator or privileged attacker to create an egress network policy that bypasses existing ingress policies of other pods in a cluster, allowing network traffic to access pods that should not be reachable. This issue results in information disclosure and other attacks on other pods that should not be reachable.