Home

Description

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.17.15, 1.18.9, and 1.19.3, the output of cilium-bugtool can contain sensitive data when the tool is run against Cilium deployments with WireGuard encryption enabled. This issue has been patched in versions 1.17.15, 1.18.9, and 1.19.3.

PUBLISHED Reserved 2026-04-20 | Published 2026-05-08 | Updated 2026-05-08 | Assigner GitHub_M




HIGH: 7.9CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N

Problem types

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

CWE-312: Cleartext Storage of Sensitive Information

Product status

< 1.17.15
affected

>= 1.18.0, < 1.18.9
affected

>= 1.19.0, < 1.19.3
affected

References

github.com/...cilium/security/advisories/GHSA-gj49-89wh-h4gj

github.com/cilium/cilium/releases/tag/v1.17.15

github.com/cilium/cilium/releases/tag/v1.18.9

github.com/cilium/cilium/releases/tag/v1.19.3

cve.org (CVE-2026-41520)

nvd.nist.gov (CVE-2026-41520)

Download JSON