CNNVD-202512-1751 Information

CNNVD ID

CNNVD-202512-1751

Related CVE

CVE-2025-67499

• CNNVD Published: 2025-12-10

Description (Chinese)

Plugins是CNI开源的一些参考和示例网络插件。 Plugins 1.6.0版本至1.8.0版本存在信息泄露漏洞，该漏洞源于nftables后端配置不当，可能导致流量拦截。

Description (English)

Plugins is a reference and example network plugin for the CCI open source. There is an information leakage loophole in Plugins 1.6.0 to 1.8.0, which stems from inappropriate rear-end configuration of nftables, which may lead to traffic interception.

Hazard Level

High

Vulnerability Type

信息泄露

Affected Vendor

CNI

Published

2025-12-10

Last Modified

2026-02-24

References

https://github.com/containernetworking/plugins/pull/1210 https://github.com/containernetworking/plugins/releases/tag/v1.9.0 https://github.com/containernetworking/plugins/security/advisories/GHSA-jv3w-x3r3-g6rm

Patch

https://github.com/containernetworking/plugins/releases