Istio is an open platform for connecting, managing, and securing microservices. Istio is vulnerable to an authorization issue in versions 1.12.0 and 1.12.1, which stems from a lack of authentication measures or insufficient authentication strength in a networked system or product. An attacker could use this vulnerability to bypass the authorization policies of the host and NOTHOST, or perform a denial-of-service attack.