Lucene search
PRIOn knowledge basePRION:CVE-2021-3586HistoryAug 22, 2022 - 3:15 p.m.
Design/Logic Flaw
2022-08-2215:15:00
PRIOn knowledge base
www.prio-n.com
5
flaw
servicemesh-operator
networkpolicy
unrestricted access
data confidentiality
integrity
system availability
A flaw was found in servicemesh-operator. The NetworkPolicy resources installed for Maistra do not properly specify which ports may be accessed, allowing access to all ports on these resources from any pod. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| openshift_service_mesh | eq | 2.0 | |
| servicemesh-operator | eq | 2.0.5.1 |
Related
redhat
redhat
(RHSA-2021:2380) Important: servicemesh-operator security update
2021-06-10 16:07:44
veracode
veracode
Privilege Escalation
2021-06-11 10:54:58
nessus
nessus
RHEL 8 : servicemesh-operator (RHSA-2021:2380)
2021-06-10 00:00:00
nvd
nvd
CVE-2021-3586
2022-08-22 15:15:13
cve
cve
CVE-2021-3586
2022-08-22 15:15:13
redhatcve
redhatcve
CVE-2021-3586
2021-06-10 15:16:05
cvelist
cvelist
CVE-2021-3586
2022-08-22 14:46:32