Lucene search
Redhat.comRH:CVE-2021-31920HistoryMay 11, 2021 - 8:55 p.m.
CVE-2021-31920
2021-05-1120:55:56
redhat.com
access.redhat.com
15
0.006 Low
EPSS
Percentile
77.7%
An authorization bypass flaw was found in Istio. This flaw allows an attacker to craft an HTTP request that defines a certain pattern of escaped characters in the URI path (such as %2F, %2f, %5C, or %5c), allowing them to bypass the authorization service. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Related
nessus
nessus
RHEL 8 : Red Hat OpenShift Service Mesh 1.1.14 (RHSA-2021:1540)
2021-05-13 00:00:00
RHEL 8 : Red Hat OpenShift Service Mesh 2.0.4 (RHSA-2021:1538)
2021-05-12 00:00:00
Photon OS 1.0: Envoy PHSA-2021-1.0-0405
2021-06-22 00:00:00
redhat
redhat
prion
prion
Path traversal
2021-05-28 21:15:00
Path traversal
2021-05-27 05:15:00
cvelist
cvelist
CVE-2021-31920
2021-05-27 04:03:31
CVE-2021-29492 Bypass of path matching rules using escaped slash characters
2021-05-28 21:00:24
cnvd
cnvd
Envoy path traversal vulnerability
2021-05-17 00:00:00
veracode
veracode
Privilege Escalation
2021-05-13 10:28:49
Privilege Escalation
2021-05-13 10:28:52
redhatcve
redhatcve
CVE-2021-29492
2021-05-11 20:55:48
osv
osv
CVE-2021-31920
2021-05-27 05:15:06
CVE-2021-29492
2021-05-28 21:15:08
BIT-envoy-2021-29492
2024-03-06 10:58:39
photon
photon
cve
cve
CVE-2021-29492
2021-05-28 21:15:00
CVE-2021-31920
2021-05-27 05:15:00
github
github
Istio Authorization Bypass Vulnerability
2022-05-24 19:03:32
oraclelinux
oraclelinux
olcne security update
2021-08-06 00:00:00
olcne security update
2021-08-06 00:00:00
olcne security update
2021-08-06 00:00:00