CVE-2021-3499
First published: Tue Apr 13 2021(Updated: )
A vulnerability was found in OVN Kubernetes in versions up to and including 0.3.0 where the Egress Firewall does not reliably apply firewall rules when there is multiple DNS rules. It could lead to potentially lose of confidentiality, integrity or availability of a service.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ovn Ovn-kubernetes | <=0.3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this OVN Kubernetes vulnerability?
The vulnerability ID for this OVN Kubernetes vulnerability is CVE-2021-3499.
What is the title of this OVN Kubernetes vulnerability?
The title of this OVN Kubernetes vulnerability is 'A vulnerability was found in OVN Kubernetes in versions up to and including 0.3.0 where the Egress Firewall does not reliably apply firewall rules when there is multiple DNS rules.'
What is the severity of CVE-2021-3499?
The severity of CVE-2021-3499 is medium with a CVSS score of 5.6.
How does the vulnerability in OVN Kubernetes affect confidentiality, integrity, or availability of a service?
The vulnerability in OVN Kubernetes could potentially lead to a loss of confidentiality, integrity, or availability of a service.
How do I fix the OVN Kubernetes vulnerability identified as CVE-2021-3499?
To fix the OVN Kubernetes vulnerability CVE-2021-3499, update to a version higher than 0.3.0.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/author
- agent/references
- agent/last-modified-date
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2021-3499
- vendor/ovn
- canonical/ovn ovn-kubernetes
- version/ovn ovn-kubernetes/0.3.0