CVE-2021-3499

Summary

A vulnerability was found in OVN Kubernetes in versions up to and including 0.3.0 where the Egress Firewall does not reliably apply firewall rules when there is multiple DNS rules. It could lead to potentially lose of confidentiality, integrity or availability of a service.

Affected Software

VendorProductVersion RangeStatus
n/aopenshift/ovn-kubernetesAll ovn-kubernetes versions up to and including 0.3.0affected

Weaknesses

  • CWE-863: CWE-863

ADP Enrichment

CVE Program Container

Additional References

References