Lucene search
K

151 matches found

Tenable Nessus
Tenable Nessus
added 2021/05/12 12:0 a.m.40 views

RHEL 8 : Red Hat OpenShift Service Mesh 2.0.4 (RHSA-2021:1538)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1538 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

8.3CVSS7.3AI score0.68383EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2021/05/11 11:31 p.m.73 views

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.0.4 security update

An update for servicemesh and servicemesh-proxy is now available for OpenShift Service Mesh 2.0. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.3CVSS6.9AI score0.68383EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2021/04/22 12:0 a.m.32 views

RHEL 8 : Red Hat OpenShift Service Mesh 2.0.3 (RHSA-2021:1324)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:1324 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

7.5CVSS7.6AI score0.0204EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2021/04/22 12:0 a.m.35 views

RHEL 8 : Red Hat OpenShift Service Mesh 1.1.13 (RHSA-2021:1322)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1322 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

7.5CVSS7.1AI score0.0204EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2020/12/22 12:0 a.m.38 views

RHEL 8 : Red Hat OpenShift Service Mesh 1.1.11 (RHSA-2020:5649)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5649 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

7.5CVSS7AI score0.0473EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2020/09/30 2:15 p.m.7 views

Low: Red Hat Bug Fix Advisory: Red Hat OpenShift Service Mesh 3scale-istio-adapter-rhel8-container update

An update for 3scale-istio-adapter-rhel8-container is now available for OpenShift Service Mesh. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. The OpenShift Service...

7.5CVSS6.8AI score0.0473EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/09/30 12:0 a.m.34 views

RHEL 8 : Red Hat OpenShift Service Mesh 1.1 servicemesh-proxy (RHSA-2020:4129)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:4129 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift...

8.3CVSS7.7AI score0.01317EPSS
Exploits1References5
NVD
NVD
added 2020/09/16 6:15 p.m.24 views

CVE-2020-14306

An incorrect access control flaw was found in the operator, openshift-service-mesh/istio-rhel8-operator all versions through 1.1.3. This flaw allows an attacker with a basic level of access to the cluster to deploy a custom gateway/pod to any namespace, potentially gaining access to privileged...

8.8CVSS0.013EPSS
Exploits0References2
OSV
OSV
added 2020/09/16 6:15 p.m.27 views

CVE-2020-14306

An incorrect access control flaw was found in the operator, openshift-service-mesh/istio-rhel8-operator all versions through 1.1.3. This flaw allows an attacker with a basic level of access to the cluster to deploy a custom gateway/pod to any namespace, potentially gaining access to privileged...

8.8CVSS6.5AI score
Exploits0References2
Cvelist
Cvelist
added 2020/09/16 12:0 a.m.24 views

CVE-2020-14306

An incorrect access control flaw was found in the operator, openshift-service-mesh/istio-rhel8-operator all versions through 1.1.3. This flaw allows an attacker with a basic level of access to the cluster to deploy a custom gateway/pod to any namespace, potentially gaining access to privileged...

8.4AI score0.013EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/08/12 12:0 a.m.7 views

The vulnerability of the operator openshift-service-mesh/istio-rhel8-operator of the platform for behavior analysis and operational control over OpenShift Service Mesh network microservices allows attackers to enhance their privileges and gain unauthorized access to protected information.

The vulnerability of the operator of openshift-service-mesh/istio-rhel8-operator platform for analyzing network microservices and performing operational control is related to the improper use of privileged APIs. Exploiting this vulnerability allows a malicious actor to enhance their privileges an...

10CVSS7.6AI score0.013EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/08/11 12:0 a.m.24 views

RHEL 8 : Red Hat OpenShift Service Mesh 1.1 (RHSA-2020:3425)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3425 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift...

6.8CVSS6.6AI score0.011EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2020/08/06 8:19 p.m.80 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Service Mesh security update

An update is now available for OpenShift Service Mesh 1.1. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links ...

7.5CVSS7.2AI score0.8383EPSS
Exploits14References6
Tenable Nessus
Tenable Nessus
added 2020/07/22 12:0 a.m.28 views

RHEL 8 : Red Hat OpenShift Service Mesh 1.1 servicemesh-proxy (RHSA-2020:3090)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:3090 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift...

5.5CVSS6.4AI score0.00252EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2020/07/07 12:0 a.m.55 views

RHEL 8 : Red Hat OpenShift Service Mesh 1.0 servicemesh-grafana (RHSA-2020:2861)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2861 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

8.2CVSS7AI score0.99856EPSS
Exploits8References16
RedHat Linux
RedHat Linux
added 2020/07/01 6:46 p.m.6 views

openshift-service-mesh/istio-rhel8-operator: control plane can deploy gateway image to any namespace

An incorrect access control flaw was found in the operator, openshift-service-mesh/istio-rhel8-operator. This flaw allows an attacker with a basic level of access to the cluster to deploy a custom gateway/pod to any namespace, potentially gaining access to privileged service account tokens. The...

8.8CVSS5.8AI score0.013EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/07/01 6:46 p.m.128 views

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh servicemesh-grafana security update

An update for servicemesh-grafana is now available for OpenShift Service Mesh 1.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.2CVSS7AI score0.99856EPSS
Exploits8References9
RedHat Linux
RedHat Linux
added 2020/07/01 6:46 p.m.67 views

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 1.1 servicemesh-proxy security update

An update for servicemesh-proxy is now available for OpenShift Service Mesh 1.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS7.1AI score0.01703EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2020/07/01 12:0 a.m.6 views

PT-2020-3498 · Red Hat · Openshift-Service-Mesh/Istio-Rhel8-Operator

Name of the Vulnerable Software and Affected Versions: openshift-service-mesh/istio-rhel8-operator versions through 1.1.3 Description: The issue is related to an incorrect access control flaw in the operator, allowing an attacker with basic access to the cluster to deploy a custom gateway or pod ...

10CVSS8.4AI score0.013EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2020/07/01 12:0 a.m.30 views

RHEL 8 : Red Hat OpenShift Service Mesh 1.1 servicemesh-operator (RHSA-2020:2795)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2795 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

8.8CVSS6.6AI score0.25939EPSS
Exploits2References6
Rows per page
Query Builder