antrea.io/antrea

Go2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting antrea.io/antreapage 1 of 1

CVE-2026-25804CRITICALCVSS 9.1EG 9.1✓ Fixed in 2.3.2
2026-02-06
Antrea is a Kubernetes networking solution intended to be Kubernetes native. Prior to versions 2.3.2 and 2.4.3, Antrea's network policy priority assignment system has a uint16 arithmetic overflow bug that causes incorrect OpenFlow priority…
CVE-2026-34992HIGHCVSS 7.5EG 7.5✓ Fixed in 1.11.0-alpha.0.0.20260225185322-738bad662b20
2026-04-06
Antrea is a Kubernetes networking solution intended to be Kubernetes native. Prior to 2.4.5 and 2.5.2, a missing encryption vulnerability affects inter-Node Pod traffic. In Antrea clusters configured for dual-stack networking with IPsec en…

Check whether antrea.io/antrea is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for antrea.io/antrea CVEs against the assets you own.

Start Free Scan →