27Mar
CVE-2024-28860 | Cilium up to 1.13.14/1.14.8/1.15.2 ESP Sequence Number inadequate encryption (GHSA-pwqm-x5x6-5586)
A vulnerability classified as problematic has been found in Cilium up to 1.13.14/1.14.8/1.15.2. Affected is an unknown function of the component ESP Sequence Number Handler. The manipulation leads to inadequate encryption strength. This vulnerability is traded as CVE-2024-28860. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.