CVE-2025-64715 | Cilium up to 1.16.16/1.17.9/1.18.3 CiliumNetworkPolicys toCIDRset access control (GHSA-38pp-6gcp-rqvm)

A vulnerability was found in Cilium up to 1.16.16/1.17.9/1.18.3. It has been classified as problematic. This vulnerability affects unknown code of the component CiliumNetworkPolicys. Performing manipulation of the argument toCIDRset results in improper access controls.

This vulnerability is known as CVE-2025-64715. Attacking locally is a requirement. No exploit is available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More