Security Advisory

CVE-2026-32254

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-18 03:14:39

Last updated 2026-03-18 13:35:56

Assigner GitHub_M

State PUBLISHED

Description

Kube-router is a turnkey solution for Kubernetes networking. Prior to version 2.8.0, Kube-routers proxy module does not validate externalIPs or loadBalancer IPs before programming them into the nodes network configuration. Version 2.8.0 contains a patch for the issue. Available workarounds include enabling DenyServiceExternalIPs feature gate, deploying admission policy, restricting service creation RBAC, monitoring service changes, and applying BGP prefix filtering.

← Browse all CVEs View on cve.org ↗