CVE-2022-28224

Summary

Clusters using Calico (version 3.22.1 and below), Calico Enterprise (version 3.12.0 and below), may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annotation to a pod even if the feature is not enabled. This may allow the attacker to intercept and reroute traffic to their compromised pod.

Affected Software

VendorProductVersion RangeStatus
TigeraCalico Enterpriseunspecified <= v3.12.0affected
Project CalicoCalicounspecified <= v3.22.1affected

Weaknesses

  • CWE-200: CWE-200 Information Exposure
  • CWE-201: CWE-201 Information Exposure Through Sent Data

ADP Enrichment

CVE Program Container

Additional References

References