Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistRedhatCVELIST:CVE-2021-3586
HistoryAug 22, 2022 - 2:46 p.m.

CVE-2021-3586

2022-08-2214:46:32
CWE-1188
redhat
www.cve.org
servicemesh-operator
networkpolicy
maistra
data confidentiality
integrity
system availability

9.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.9%

JSON

A flaw was found in servicemesh-operator. The NetworkPolicy resources installed for Maistra do not properly specify which ports may be accessed, allowing access to all ports on these resources from any pod. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

CNA Affected

[
  {
    "product": "servicemesh-operator",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Affects v2.0.5.1, Fixed in v2.0.5.2."
      }
    ]
  }
]

Related

prion 1
redhat 1
veracode 1
nessus 1
nvd 1
cve 1
redhatcve 1
prion
prion
Design/Logic Flaw
2022-08-22 15:15:00
redhat
redhat
(RHSA-2021:2380) Important: servicemesh-operator security update
2021-06-10 16:07:44
veracode
veracode
Privilege Escalation
2021-06-11 10:54:58
nessus
nessus
RHEL 8 : servicemesh-operator (RHSA-2021:2380)
2021-06-10 00:00:00
nvd
nvd
CVE-2021-3586
2022-08-22 15:15:13
cve
cve
CVE-2021-3586
2022-08-22 15:15:13
redhatcve
redhatcve
CVE-2021-3586
2021-06-10 15:16:05

9.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.9%

JSON
Related for CVELIST:CVE-2021-3586
prion1redhat1veracode1nessus1nvd1cve1redhatcve1