Lucene search
GoogleOSV:CVE-2020-8664HistoryMar 04, 2020 - 9:15 p.m.
CVE-2020-8664
2020-03-0421:15:11
Google
osv.dev
1
CNCF Envoy through 1.13.0 has incorrect Access Control when using SDS with Combined Validation Context. Using the same secret (e.g. trusted CA) across many resources together with the combined validation context could lead to the “static” part of the validation context to be not applied, even though it was visible in the active config dump.
Related
redhatcve
redhatcve
CVE-2020-8664
2020-03-03 23:40:58
prion
prion
Design/Logic Flaw
2020-03-04 21:15:00
cve
cve
CVE-2020-8664
2020-03-04 21:15:11
cvelist
cvelist
CVE-2020-8664
2020-03-04 20:53:13
nvd
nvd
CVE-2020-8664
2020-03-04 21:15:11
nessus
nessus
Photon OS 2.0: Envoy PHSA-2020-2.0-0229
2020-04-22 00:00:00
Photon OS 1.0: Envoy PHSA-2020-1.0-0290
2020-04-29 00:00:00
redhat
redhat
photon
photon