Cilium

Querying Cilium

curl "https://api.attestd.io/v1/check?product=cilium&version=1.13.0" \
  -H "Authorization: Bearer $ATTESTD_KEY"

Cilium 1.13.0 is affected by CVE-2023-29002 (TLS private keys logged when debug mode is enabled). The aggregated response expects a non- none risk_state.

{
  "product": "cilium",
  "version": "1.13.0",
  "supported": true,
  "risk_state": "medium",
  "risk_factors": [
    "information_disclosure",
    "patch_available"
  ],
  "actively_exploited": false,
  "remote_exploitable": false,
  "authentication_required": true,
  "patch_available": true,
  "fixed_version": "1.13.2",
  "confidence": 0.84,
  "cve_ids": ["CVE-2023-29002"],
  "last_updated": "2026-05-22T00:00:00Z"
}

Cilium 1.16.0 is used as a patched-line example; confirm with live /v1/check after ingestion.

curl "https://api.attestd.io/v1/check?product=cilium&version=1.16.0" \
  -H "Authorization: Bearer $ATTESTD_KEY"

CVE history

Cilium CVEs span the eBPF dataplane, Kubernetes network policy enforcement, Hubble observability, and ingress/gateway TLS handling. Policy bypass and information disclosure issues are particularly relevant when Cilium secures multi-tenant AI or platform clusters.