Lucene search

CVE-2022-39388

🗓️ 10 Nov 2022 20:10:15Reported by GitHub_MType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 52 Views

Istio 1.15.x branch prior to 1.15.3 allows local user to impersonate any workload identity within service mes

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
RedhatCVE	CVE-2022-39388	5 Feb 202519:38	–	redhatcve
Veracode	Improper Access Control	11 Nov 202203:09	–	veracode
Cvelist	CVE-2022-39388 Istio may allow identity impersonation if user has localhost access	10 Nov 202200:00	–	cvelist
Vulnrichment	CVE-2022-39388 Istio may allow identity impersonation if user has localhost access	10 Nov 202200:00	–	vulnrichment
Github Security Blog	Istio may allow identity impersonation if user has localhost access	9 Nov 202222:07	–	github
NVD	CVE-2022-39388	10 Nov 202220:15	–	nvd
Prion	Design/Logic Flaw	10 Nov 202220:15	–	prion
OSV	CVE-2022-39388	10 Nov 202220:15	–	osv
OSV	GHSA-6C6P-H79F-G6P4 Istio may allow identity impersonation if user has localhost access	9 Nov 202222:07	–	osv

Nvd

Vulners

Node

istio istioRange1.15.0–1.15.2

[
  {
    "vendor": "istio",
    "product": "istio",
    "versions": [
      {
        "version": ">= 1.15.0-beta.0, < 1.15.3",
        "status": "affected"
      }
    ]
  }
]

Source	Link
istio	www.istio.io/latest/news/releases/1.15.x/announcing-1.15.3/
github	www.github.com/istio/istio/commit/346260e5115e9fbc65ba8a559bc686e6ca046a32
github	www.github.com/istio/istio/security/advisories/GHSA-6c6p-h79f-g6p4
github	www.github.com/istio/istio/commit/9a643e270421560afb2630e00f76d46a55499df9

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Nov 2022 20:15Current

4.8Medium risk

Vulners AI Score4.8

CVSS33.5 - 7.6

EPSS0.00161

SSVC

CWE-863