Merge pull request #6 from kubernetes-sigs/vulns-CVE-2020-10749.json

Update vulns/CVE-2020-10749.json
kubernetes-sigs · Jul 10, 2024 · 61910a9 · 61910a9
2 parents 57aceea + 6e302da
commit 61910a9
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/vulns/CVE-2020-10749.json b/vulns/CVE-2020-10749.json
@@ -1,6 +1,6 @@
 {
     "id": "CVE-2020-10749",
-    "modified": "2020-05-27T18:18:01Z",
+    "modified": "2020-05-27T19:32:29Z",
     "published": "2020-05-27T18:18:01Z",
     "summary": "Malicious container can reconfigure the host to redirect part or all of the IPv6 traffic of the host to the attacker-controlled container",
     "details": "A cluster configured to use an affected container networking implementation is susceptible to man-in-the-middle (MitM) attacks. By sending “rogue” router advertisements, a malicious container can reconfigure the host to redirect part or all of the IPv6 traffic of the host to the attacker-controlled container. Even if there was no IPv6 traffic before, if the DNS returns A (IPv4) and AAAA (IPv6) records, many HTTP libraries will try to connect via IPv6 first then fallback to IPv4, giving an opportunity to the attacker to respond.",
@@ -49,4 +49,4 @@
             "url": "https://github.com/kubernetes/kubernetes/issues/91507"
         }
     ]
-}
+}