Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2021/04/22 9:3 a.m.81 views

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 1.1.13 security update

An update for servicemesh and servicemesh-proxy is now available for OpenShift Service Mesh 1.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS7AI score0.0204EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2021/04/22 12:0 a.m.35 views

RHEL 8 : Red Hat OpenShift Service Mesh 1.1.13 (RHSA-2021:1322)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1322 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

7.5CVSS7.1AI score0.0204EPSS
Exploits1References10
OSV
OSV
added 2021/01/29 6:15 a.m.23 views

CVE-2019-25014

A NULL pointer dereference was found in pkg/proxy/envoy/v2/debug.go getResourceVersion in Istio pilot before 1.5.0-alpha.0. If a particular HTTP GET request is made to the pilot API endpoint, it is possible to cause the Go runtime to panic resulting in a denial of service to the istio-pilot...

6.5CVSS6.7AI score
Exploits0References2
CVE
CVE
added 2021/01/29 6:0 a.m.101 views

CVE-2019-25014

CVE-2019-25014 involves a NULL pointer dereference in Istio’s Istio-pilot component (pkg/proxy/envoy/v2/debug.go getResourceVersion) prior to 1.5.0-alpha.0. A specific HTTP GET to the pilot debug API endpoint can cause the Go runtime to panic, yielding a denial-of-service against istio-pilot. The...

6.5CVSS6.4AI score0.01422EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder