Lucene search
GoogleOSV:GHSA-QCVW-82HH-GQ38HistoryMay 24, 2022 - 4:53 p.m.
Istio ReDoS Vulnerability
2022-05-2416:53:16
Google
osv.dev
2
0.002 Low
EPSS
Percentile
65.1%
Istio before 1.1.13 and 1.2.x before 1.2.4 mishandles regular expressions for long URIs, leading to a denial of service during use of the JWT, VirtualService, HTTPAPISpecBinding, or QuotaSpecBinding API.
| CPE | Name | Operator | Version |
|---|---|---|---|
| istio.io/istio | lt | 1.2.4 | |
| istio.io/istio | ge | 1.2.0 | |
| istio.io/istio | lt | 1.1.13 |
Related
osv
osv
CGA-mrmq-j9c4-6c63
2024-06-19 07:35:13
CGA-f747-2v75-5hj8
2024-06-19 19:04:07
CVE-2019-14993
2019-08-13 18:15:13
redhatcve
redhatcve
CVE-2019-14993
2019-10-09 08:30:40
cvelist
cvelist
CVE-2019-14993
2019-08-13 17:38:39
CVE-2019-15225
2019-08-19 22:57:58
nvd
nvd
CVE-2019-14993
2019-08-13 18:15:13
CVE-2019-15225
2019-08-19 23:15:10
github
github
Istio ReDoS Vulnerability
2022-05-24 16:53:16
symantec
symantec
Istio CVE-2019-14993 Remote Denial of Service Vulnerability
2019-10-12 00:00:00
prion
prion
Design/Logic Flaw
2019-08-13 18:15:00
Design/Logic Flaw
2019-08-19 23:15:00
gitlab
gitlab
Incorrect Regular Expression
2019-08-13 00:00:00
cve
cve
CVE-2019-14993
2019-08-13 18:15:13
CVE-2019-15225
2019-08-19 23:15:10
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2020-05-14 02:58:26