CVE-2025-0650

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-0650

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-0650.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-0650

Downstream

DEBIAN-CVE-2025-0650

RHSA-2025:1083

RHSA-2025:1084

RHSA-2025:1085

RHSA-2025:1086

RHSA-2025:1087

RHSA-2025:1088

RHSA-2025:1089

RHSA-2025:1090

RHSA-2025:1091

RHSA-2025:1092

RHSA-2025:1093

RHSA-2025:1094

RHSA-2025:1095

RHSA-2025:1096

RHSA-2025:1097

SUSE-SU-2025:0561-1

SUSE-SU-2025:0578-1

SUSE-SU-2025:0583-1

SUSE-SU-2025:0742-1

UBUNTU-CVE-2025-0650

USN-7396-1

openSUSE-SU-2025:14757-1

Related

Published

2025-01-23T17:15:22Z

Modified

2025-08-09T20:01:26Z

Summary

[none]

Details

A flaw was found in the Open Virtual Network (OVN). Specially crafted UDP packets may bypass egress access control lists (ACLs) in OVN installations configured with a logical switch with DNS records set on it and if the same switch has any egress ACLs configured. This issue can lead to unauthorized access to virtual machines and containers running on the OVN network.

References

Affected packages