Vulnerabilities > Weave > Weave NET

DATE CVE VULNERABILITY TITLE RISK
2020-06-03 CVE-2020-11091 Reliance on Reverse DNS Resolution for a Security-Critical Action vulnerability in Weave NET
In Weave Net before version 2.6.3, an attacker able to run a process as root in a container is able to respond to DNS requests from the host and thereby insert themselves as a fake service.
network
high complexity
weave CWE-350
5.8