Lucene search
K

130 matches found

OSV
OSV
added 2026/07/02 5:15 p.m.4 views

GHSA-G3XR-5W5J-W4Q4 Contour has Improper JWT Verification for Non-SNI Requests on Virtual Hosts with Fallback Certificate Enabled

Impact When an HTTPProxy is configured with incompatible combination of both .spec.virtualhost.tls.enableFallbackCertificate: true and .spec.virtualhost.jwtProviders, Contour does not reject the configuration. Consequently, requests from clients that do not send TLS SNI or send an unrecognized SN...

6.5CVSS5.8AI score0.00023EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/07/02 12:0 a.m.7 views

PT-2026-55460

Name of the Vulnerable Software and Affected Versions Contour versions prior to 1.33.5 Description An issue exists when an HTTPProxy is configured with both .spec.virtualhost.tls.enableFallbackCertificate: true and .spec.virtualhost.jwtProviders. In this scenario, the system fails to reject the...

6.5CVSS6AI score0.00023EPSS
Exploits0References4
OSV
OSV
added 2026/06/25 10:34 p.m.4 views

GO-2026-5738 Contour has Lua code injection via Cookie Path Rewrite Policy in github.com/projectcontour/contour

Contour has Lua code injection via Cookie Path Rewrite Policy in github.com/projectcontour/contour...

8.1CVSS5.9AI score0.00481EPSS
Exploits0References7
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.9 views

FreeType Contour Boundary Validation Utility

This is a FreeType contour boundary validation utility for detecting indexing and integer-limit risks. It implements a validation routine for detecting unsafe contour metadata conditions by evaluating contour counts and index boundaries against expected limits...

5.3AI score
Exploits0
OSV
OSV
added 2026/04/25 8:36 a.m.9 views

BIT-CONTOUR-2026-41246 Contour: Lua code injection via Cookie Path Rewrite Policy

Contour is a Kubernetes ingress controller using Envoy proxy. From v1.19.0 to before v1.33.4, v1.32.5, and v1.31.6, Contour's Cookie Rewriting feature is vulnerable to Lua code injection. An attacker with RBAC permissions to create or modify HTTPProxy resources can craft a malicious value in...

8.1CVSS6.4AI score0.00481EPSS
Exploits0References8
EUVD
EUVD
added 2026/04/24 3:19 p.m.13 views

EUVD-2026-25280

Contour has Lua code injection via Cookie Path Rewrite Policy...

8.1CVSS5.3AI score0.00481EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2026/04/24 3:19 p.m.15 views

Contour has Lua code injection via Cookie Path Rewrite Policy

Impact Contour's Cookie Rewriting feature is vulnerable to Lua code injection. An attacker with RBAC permissions to create or modify HTTPProxy resources can craft a malicious value in the following fields that results in arbitrary code execution in the Envoy proxy: -...

8.1CVSS6.3AI score0.00481EPSS
Exploits0References11Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/24 1:15 p.m.10 views

CVE-2026-41246

A flaw was found in Contour, a Kubernetes ingress controller. An attacker with Role-Based Access Control RBAC permissions to manage HTTPProxy resources can exploit a Lua code injection vulnerability within Contour's Cookie Rewriting feature. By crafting a malicious value in specific configuration...

8.1CVSS6.3AI score0.00481EPSS
Exploits0References7
NVD
NVD
added 2026/04/23 7:17 p.m.11 views

CVE-2026-41246

Contour is a Kubernetes ingress controller using Envoy proxy. From v1.19.0 to before v1.33.4, v1.32.5, and v1.31.6, Contour's Cookie Rewriting feature is vulnerable to Lua code injection. An attacker with RBAC permissions to create or modify HTTPProxy resources can craft a malicious value in...

8.1CVSS0.00481EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/04/23 6:44 p.m.5 views

CVE-2026-41246

Contour is a Kubernetes ingress controller using Envoy proxy. From v1.19.0 to before v1.33.4, v1.32.5, and v1.31.6, Contour's Cookie Rewriting feature is vulnerable to Lua code injection. An attacker with RBAC permissions to create or modify HTTPProxy resources can craft a malicious value in...

8.1CVSS6.4AI score0.00481EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/04/23 6:44 p.m.37 views

CVE-2026-41246 Contour: Lua code injection via Cookie Path Rewrite Policy

Contour is a Kubernetes ingress controller using Envoy proxy. From v1.19.0 to before v1.33.4, v1.32.5, and v1.31.6, Contour's Cookie Rewriting feature is vulnerable to Lua code injection. An attacker with RBAC permissions to create or modify HTTPProxy resources can craft a malicious value in...

8.1CVSS0.00481EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/23 6:44 p.m.4 views

CVE-2026-41246 Contour: Lua code injection via Cookie Path Rewrite Policy

Contour is a Kubernetes ingress controller using Envoy proxy. From v1.19.0 to before v1.33.4, v1.32.5, and v1.31.6, Contour's Cookie Rewriting feature is vulnerable to Lua code injection. An attacker with RBAC permissions to create or modify HTTPProxy resources can craft a malicious value in...

8.1CVSS6.3AI score0.00481EPSS
Exploits0References4
CVE
CVE
added 2026/04/23 6:44 p.m.14 views

CVE-2026-41246

Contour’s Cookie Rewriting feature (Envoy Lua filter) is vulnerable to Lua code injection from v1.19.0 up to before v1.33.4, v1.32.5, and v1.31.6. An attacker with RBAC to create/modify HTTPProxy resources can inject values into spec.routes[].cookieRewritePolicies[].pathRewrite.value (or services...

8.1CVSS6.4AI score0.00481EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/23 12:0 a.m.9 views

PT-2026-34726

Name of the Vulnerable Software and Affected Versions Contour versions 1.19.0 through 1.31.5 Contour versions 1.32.0 through 1.32.4 Contour versions 1.33.0 through 1.33.3 Description The Cookie Rewriting feature is susceptible to Lua code injection. An attacker with RBAC permissions to create or...

8.1CVSS6.2AI score0.00481EPSS
Exploits0References12
CNNVD
CNNVD
added 2026/04/23 12:0 a.m.12 views

Contour 代码注入漏洞

Contour is an open-source Kubernetes ingress controller that uses Envoy proxies. Versions of Contour from v1.19.0 to v1.33.4, v1.32.5 before v1.32.5, and v1.31.6 before v1.31.6 had a code injection vulnerability. This vulnerability stemmed from the Cookie rewriting feature, which was vulnerable t...

8.1CVSS6AI score0.00481EPSS
Exploits0References1
Wolfi
Wolfi
added 2026/04/11 2:51 a.m.9 views

GHSA-7MR4-XJXG-34G6 vulnerabilities

Vulnerabilities for packages: scorecard, modelmesh-runtime-adapter, falco-no-driver, k8sgpt-operator, rancher, kargo, secrets-store-csi-driver-provider-azure, cloud-provider-azure, flux-source-controller, falcoctl, step-issuer, gitaly, terraform-provider-time, cortex, flux-notification-controller...

6.1AI score
Exploits0
Wolfi
Wolfi
added 2026/03/19 1:48 p.m.9 views

CVE-2026-33186 vulnerabilities

Vulnerabilities for packages: scorecard, percona-server-mongodb-operator, velero-plugin-for-csi, rancher, falcoctl, step-issuer, gitaly, gatus, neuvector-scanner, grafana-image-renderer, terraform-provider-grafana, knative-eventing, prometheus, oauth2-proxy, cilium-envoy,...

9.1CVSS6.6AI score0.01557EPSS
Exploits1
Wolfi
Wolfi
added 2026/03/19 1:48 p.m.9 views

GHSA-P77J-4MVH-X3M3 vulnerabilities

Vulnerabilities for packages: scorecard, percona-server-mongodb-operator, velero-plugin-for-csi, rancher, falcoctl, step-issuer, gitaly, gatus, neuvector-scanner, grafana-image-renderer, terraform-provider-grafana, knative-eventing, prometheus, oauth2-proxy, cilium-envoy,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/03/19 1:17 p.m.17 views

CVE-2026-33186 vulnerabilities

Vulnerabilities for packages: flyte, kubernetes-csi-external-resizer-fips, crossplane-provider-aws-cloudformation-fips, src, sftpgo-plugin-pubsub, backup-restore-operator-fips, crossplane-provider-aws-backup-fips, boring-registry, cloud-provider-aws, consul-k8s, vault-fips, gitaly, jfrog-cli,...

9.1CVSS6.6AI score0.01557EPSS
Exploits1
Chainguard
Chainguard
added 2026/03/19 1:17 p.m.5 views

GHSA-P77J-4MVH-X3M3 vulnerabilities

Vulnerabilities for packages: flyte, kubernetes-csi-external-resizer-fips, crossplane-provider-aws-cloudformation-fips, src, sftpgo-plugin-pubsub, backup-restore-operator-fips, crossplane-provider-aws-backup-fips, boring-registry, cloud-provider-aws, consul-k8s, vault-fips, gitaly, jfrog-cli,...

6.1AI score
Exploits0
Rows per page
Query Builder