Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

cilium — Vulnerabilities & Security Advisories 34

Browse all 34 CVE security advisories affecting cilium. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cilium is an open-source networking, observability, and security platform primarily designed for Kubernetes environments, leveraging eBPF technology to provide high-performance packet processing. Its architecture enables deep visibility into network traffic and enforces security policies at the kernel level, offering a robust alternative to traditional iptables-based solutions. Historically, the project has faced numerous security challenges, with thirty-three Common Vulnerabilities and Exposures (CVEs) recorded to date. These incidents predominantly involve remote code execution and privilege escalation flaws, often stemming from improper input validation or memory safety issues within the eBPF bytecode verification logic. While major public breaches remain rare, the high volume of disclosed vulnerabilities highlights the complexity of maintaining secure eBPF implementations. Users must prioritize regular patching and strict configuration management to mitigate risks associated with these historically common vulnerability classes, ensuring the integrity of containerized workloads.

Top products by cilium: cilium cilium-cli hubble
CVE IDTitleCVSSSeverityPublished
CVE-2026-41520 Cillium exposes sensitive information included in the cilium-bugtool debug archive — ciliumCWE-200 7.9 High2026-05-08
CVE-2026-33726 Cilium L7 proxy may bypass Kubernetes NetworkPolicy for same-node traffic — ciliumCWE-284 5.4 Medium2026-03-27
CVE-2026-26963 Cilium may not enforce host firewall policies when Native Routing, WireGuard and Node Encryption are enabled — ciliumCWE-863 6.1 Medium2026-02-19
CVE-2025-64715 Cilium with misconfigured toGroups in policies can lead to unrestricted egress traffic — ciliumCWE-284 4.0 Medium2025-11-29
CVE-2025-48056 Hubble CLI vulnerable to character injection — hubbleCWE-74 5.3 Medium2025-05-20
CVE-2025-32793 Cilium packets from terminating endpoints may not be encrypted in Wireguard-enabled clusters — ciliumCWE-319 4.0 Medium2025-04-21
CVE-2025-30163 Node based network policies may incorrectly allow workload traffic — ciliumCWE-863 3.4 Low2025-03-24
CVE-2025-30162 East-west traffic not subject to egress policy enforcement for requests via Gateway API load balancers — ciliumCWE-863 3.2 Low2025-03-24
CVE-2025-23047 Cilium vulnerable to information leakage via insecure default Hubble UI CORS header — ciliumCWE-200 6.5 Medium2025-01-22
CVE-2025-23028 DoS in Cilium agent DNS proxy from crafted DNS responses — ciliumCWE-770 5.3 Medium2025-01-22
CVE-2024-52529 Layer 7 policy enforcement may not occur in policies with wildcarded port ranges in Cilium — ciliumCWE-755 5.8 Medium2024-11-25
CVE-2024-47825 CIDR deny policies may not take effect when a more narrow CIDR allow is present — ciliumCWE-276 4.0 Medium2024-10-21
CVE-2024-42486 Cilium vulnerable to information leakage via incorrect ReferenceGrant update logic in Gateway API — ciliumCWE-200 5.4 Medium2024-08-16
CVE-2024-42488 Cilium agent's race condition may lead to policy bypass for Host Firewall policy — ciliumCWE-362 6.8 Medium2024-08-15
CVE-2024-42487 Cilium's Gateway API route matching order contradicts specification — ciliumCWE-113 4.0 Medium2024-08-15
CVE-2024-37307 Cilium leaks sensitive information in cilium-bugtool — ciliumCWE-200 7.9 High2024-06-13
CVE-2024-28860 Insecure IPsec transport encryption in Cilium — ciliumCWE-326 8.0 High2024-03-27
CVE-2024-28250 Cilium has possible unencrypted traffic between nodes when using WireGuard and L7 policies — ciliumCWE-311 6.1 Medium2024-03-18
CVE-2024-28249 Cilium has possible unencrypted traffic between nodes when using IPsec and L7 policies — ciliumCWE-311 6.1 Medium2024-03-18
CVE-2024-28248 Cilium intermittent HTTP policy bypass — ciliumCWE-693 7.2 High2024-03-18
CVE-2024-25631 Unencrypted traffic between pods when using Wireguard and an external kvstore — ciliumCWE-311 6.1 Medium2024-02-20
CVE-2024-25630 Cilium has unencrypted ingress/health traffic when using Wireguard transparent encryption — ciliumCWE-311 6.1 Medium2024-02-20
CVE-2023-41332 Denial of service via Kubernetes annotations in specific Cilium configurations — ciliumCWE-755 3.5 Low2023-09-26
CVE-2023-41333 Bypass of namespace restrictions in CiliumNetworkPolicy — ciliumCWE-306 6.9 Medium2023-09-26
CVE-2023-39347 Cilium NetworkPolicy bypass via pod labels — ciliumCWE-345 7.6 High2023-09-26
CVE-2023-34242 Cilium vulnerable to information leakage via incorrect ReferenceGrant handling — ciliumCWE-200 3.4 Low2023-06-15
CVE-2023-30851 Potential HTTP policy bypass when using header rules in Cilium — ciliumCWE-693 2.6 Low2023-05-25
CVE-2023-29002 Debug mode leaks confidential data in Cilium — ciliumCWE-532 7.2 High2023-04-18
CVE-2023-28114 `cilium-cli` disables etcd authorization for clustermesh clusters — cilium-cliCWE-280 4.8 Medium2023-03-22
CVE-2023-27595 Cilium eBPF filters may be temporarily removed during agent restart — ciliumCWE-755 6.5 Medium2023-03-17

This page lists every published CVE security advisory associated with cilium. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.