CVE-2026-41520

< 1.17.15

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.17.15, 1.18.9, and

7.9HIGH

CVE-2026-33726

< 1.17.14

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.17.14, 1.18.8, and

5.4MEDIUM

CVE-2026-26963

>= 1.18.0 and < 1.18.6

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Versions 1.18.0 through 1.18.5 will inc

6.1MEDIUM

CVE-2025-64715

< 1.16.17

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.16.17, 1.17.10, and

4.0MEDIUM

CVE-2025-32793

>= 1.13.0 and < 1.15.16

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Versions 1.15.0 to 1.15.15, 1.16.0 to 1

4.0MEDIUM

CVE-2025-30163

>= 1.16.0 and < 1.16.8

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Node based network policies (`fromNodes

3.4LOW

CVE-2025-30162

>= 1.15.0 and < 1.15.15

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who use Gateway API fo

3.2LOW

CVE-2025-23047

>= 1.14.0 and < 1.14.19

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. An insecure default `Access-Control-All

6.5MEDIUM

CVE-2025-23028

>= 1.14.0 and < 1.14.18

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. A denial of service vulnerability affec

5.3MEDIUM

CVE-2024-52529

>= 1.16.0 and < 1.16.4

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For users with the following configurat

5.8MEDIUM

CVE-2024-47825

>= 1.14.0 and < 1.14.16

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.14.0 and prior to

4.0MEDIUM

CVE-2024-42486

>= 1.15.0 and <= 1.15.8

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. In versions on the 1.15.x branch prior

5.4MEDIUM

CVE-2024-42488

< 1.14.14

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.14.14 and 1.15.8, a

6.8MEDIUM

CVE-2024-42487

>= 1.15.0 and < 1.15.8

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. In the 1.15 branch prior to 1.15.8 and

4.0MEDIUM

CVE-2024-37307

>= 1.13.0 and < 1.13.17

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.13.0 and prior to

7.9HIGH

CVE-2024-28860

>= 1.4.0 and < 1.13.14

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Users of IPsec transparent encryption i

8.0HIGH

CVE-2024-28250

>= 1.14.0 and < 1.14.8

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.14.0 and prior to

6.1MEDIUM

CVE-2024-28249

< 1.13.13

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.13.13, 1.14.8, and

6.1MEDIUM

CVE-2024-28248

>= 1.13.9 and < 1.13.13

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.13.9 and prior to

7.2HIGH

CVE-2024-25631

>= 1.14.0 and < 1.14.7

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who have enabled an ex

6.1MEDIUM

CVE-2024-25630

>= 1.14.0 and < 1.14.7

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who are using CRDs to

6.1MEDIUM

CVE-2023-41333

< 1.12.14

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. An attacker with the ability to create

6.9MEDIUM

CVE-2023-41332

< 1.12.14

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. In Cilium clusters where Cilium's Layer

3.5LOW

CVE-2023-39347

< 1.12.14

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. An attacker with the ability to update

7.6HIGH

CVE-2023-34242

< 1.13.4

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to version 1.13.4, when Gateway A

3.4LOW

CVE-2023-30851

< 1.11.16

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. This issue only impacts users who have

2.6LOW

CVE-2023-29002

>= 1.7.0 and < 1.11.16

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. When run in debug mode, Cilium will log

7.2HIGH

CVE-2023-28114

< 0.13.2

cilium-cli is the command line interface to install, manage, and troubleshoot Kubernetes clusters running Cilium. Prior to versi

4.8MEDIUM

CVE-2023-27595

all versions

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. In version 1.13.0, when Cilium is start

6.5MEDIUM

CVE-2023-27594

< 1.11.15

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and

4.2MEDIUM

CVE-2023-27593

< 1.11.15

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and

4.4MEDIUM

CVE-2022-29179

< 1.9.16

Cilium is open source software for providing and securing network connectivity and loadbalancing between application workloads. Pr

7.5HIGH

CVE-2022-29178

< 1.9.16

Cilium is open source software for providing and securing network connectivity and loadbalancing between application workloads. Ci

8.8HIGH