Lucene search
K

istio: incorrect translation of DENY policy for TCP service

šŸ—“ļøĀ 11 Aug 2020Ā 20:55:01Reported byĀ RedHatTypeĀ 
redhat
Ā redhat
šŸ”—Ā access.redhat.comšŸ‘Ā 5Ā Views

Istio DENY policy for TCP with wildcard is translated wrongly, removing the wildcard and enabling access.

Related
Packages
Refs
ReporterTitlePublishedViews
Family
BDU FSTEC
The vulnerability of the Istio network software, related to access control deficiencies, allows attackers to compromise the confidentiality and integrity of the protected information.
21 Apr 202100:00
–bdu_fstec
Circl
CVE-2020-16844
1 Oct 202020:53
–circl
CVE
CVE-2020-16844
1 Oct 202016:32
–cve
Cvelist
CVE-2020-16844
1 Oct 202016:32
–cvelist
EUVD
EUVD-2022-0899
3 Oct 202520:07
–euvd
Github Security Blog
Authorization bypass in Istio
15 Feb 202201:57
–github
GitLab Advisory Database
Authorization bypass in Istio
15 Feb 202200:00
–gitlab
GitLab Advisory Database
Authorization bypass in Istio
15 Feb 202200:00
–gitlab
NVD
CVE-2020-16844
1 Oct 202017:15
–nvd
OSV
GHSA-82MM-FFJR-H86C Authorization bypass in Istio
15 Feb 202201:57
–osv
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Red Hat Enterprise Linux8x86_64servicemesh0:1.1.7-1.el8servicemesh-0:1.1.7-1.el8.x86_64.rpm
Red Hat Enterprise Linux8x86_64servicemesh-citadel0:1.1.7-1.el8servicemesh-citadel-0:1.1.7-1.el8.x86_64.rpm
Red Hat Enterprise Linux8x86_64servicemesh-galley0:1.1.7-1.el8servicemesh-galley-0:1.1.7-1.el8.x86_64.rpm
Red Hat Enterprise Linux8x86_64servicemesh-istioctl0:1.1.7-1.el8servicemesh-istioctl-0:1.1.7-1.el8.x86_64.rpm
Red Hat Enterprise Linux8x86_64servicemesh-mixc0:1.1.7-1.el8servicemesh-mixc-0:1.1.7-1.el8.x86_64.rpm
Red Hat Enterprise Linux8x86_64servicemesh-mixs0:1.1.7-1.el8servicemesh-mixs-0:1.1.7-1.el8.x86_64.rpm
Red Hat Enterprise Linux8x86_64servicemesh-pilot-agent0:1.1.7-1.el8servicemesh-pilot-agent-0:1.1.7-1.el8.x86_64.rpm
Red Hat Enterprise Linux8x86_64servicemesh-pilot-discovery0:1.1.7-1.el8servicemesh-pilot-discovery-0:1.1.7-1.el8.x86_64.rpm
Red Hat Enterprise Linux8x86_64servicemesh-sidecar-injector0:1.1.7-1.el8servicemesh-sidecar-injector-0:1.1.7-1.el8.x86_64.rpm

Data

Build on a solid foundation withĀ Vulners data

WeĀ provide theĀ essential building blocks forĀ cybersecurity solutions withĀ comprehensive, structured, andĀ constantly updated vulnerability andĀ exploits data

Api

Power your application withĀ Vulners API

The Vulners REST API offers reliable, high-performance access toĀ vulnerabilityĀ intelligence, withĀ 99.9%Ā SLAĀ uptime andĀ CDN-backed data delivery forĀ seamlessĀ global access

App

Assess and manage vulnerabilities withĀ VulnersĀ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

18 Mar 2026 02:06Current
5.8Medium risk
Vulners AI Score5.8
CVSS 24.9
CVSS 3.16.8
EPSS0.011
5