Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2020/04/29 12:0 a.m.31 views

Photon OS 1.0: Envoy PHSA-2020-1.0-0290

An update of the envoy package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-1.0-0290. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid136105...

7.8CVSS6.8AI score0.65393EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2020/04/22 12:0 a.m.33 views

Photon OS 2.0: Envoy PHSA-2020-2.0-0229

An update of the envoy package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0229. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid135867...

7.8CVSS6.8AI score0.65393EPSS
Exploits3References8
RedHat Linux
RedHat Linux
added 2020/03/05 7:1 p.m.88 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 1.0.9 servicemesh-proxy security update

Red Hat OpenShift Service Mesh 1.0.9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References...

7.5CVSS6.7AI score0.0184EPSS
Exploits0References5
NVD
NVD
added 2020/03/04 9:15 p.m.29 views

CVE-2020-8664

CNCF Envoy through 1.13.0 has incorrect Access Control when using SDS with Combined Validation Context. Using the same secret e.g. trusted CA across many resources together with the combined validation context could lead to the “static” part of the validation context to be not applied, even thoug...

5.3CVSS6.2AI score0.013EPSS
Exploits0References3
CVE
CVE
added 2020/03/04 8:53 p.m.101 views

CVE-2020-8664

CVE-2020-8664 is reported in the Red Hat OpenShift Service Mesh 1.0.9 servicemesh-proxy advisory (RHSA-2020:0734). The issue is an incorrect Access Control when using SDS with a Combined Validation Context in Envoy, which could affect access controls across multiple resources and is one of severa...

5.3CVSS6AI score0.013EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2020/03/04 8:53 p.m.30 views

CVE-2020-8664

CNCF Envoy through 1.13.0 has incorrect Access Control when using SDS with Combined Validation Context. Using the same secret e.g. trusted CA across many resources together with the combined validation context could lead to the “static” part of the validation context to be not applied, even thoug...

6.2AI score0.013EPSS
Exploits0References3
Rows per page
Query Builder