Lucene search
+L

8 matches found

Oracle linux
Oracle linux
added 2021/11/09 12:0 a.m.41 views

olcne istio istio kubernetes security update

olcne 1.3.2-2 - Turn off default PodDisruptionBudget in istio template to unblock kubernetes module upgrade - Update Kubernetes version to 1.20.11 to address CVE-2021-25741 - Update Istio to 1.9.8, 1.10.4 to address CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781 -...

8.8CVSS7.8AI score0.06873EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2021/11/09 12:0 a.m.45 views

Oracle Linux 7 : olcne (ELSA-2021-9526)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9526 advisory. - Update Kubernetes version to 1.20.11 to address CVE-2021-25741 - Update Istio to 1.9.8, 1.10.4 to address CVE-2021-32777, CVE-2021-32778,...

8.8CVSS7.3AI score0.06873EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2021/08/25 9:37 a.m.36 views

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.0.7.1 security update

An update for servicemesh and servicemesh-proxy is now available for OpenShift Service Mesh 2.0. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.6CVSS7.1AI score0.03325EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2021/08/25 9:37 a.m.60 views

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 1.1.17.1 security update

An update for servicemesh and servicemesh-proxy is now available for OpenShift Service Mesh 1.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.6CVSS7.1AI score0.03325EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2021/08/25 12:0 a.m.28 views

RHEL 8 : Red Hat OpenShift Service Mesh 1.1.17.1 (RHSA-2021:3273)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3273 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

8.6CVSS7.7AI score0.03325EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2021/08/25 12:0 a.m.42 views

RHEL 8 : Red Hat OpenShift Service Mesh 2.0.7.1 (RHSA-2021:3272)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3272 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

8.6CVSS7.7AI score0.03325EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2021/08/24 10:14 p.m.43 views

CVE-2021-32777

An authorization bypass vulnerability was found in envoyproxy/envoy. Envoy incorrectly evaluates an HTTP request with multiple value headers. This flaw allows an attacker to bypass rule policies that use the extauthz extension. The highest threat from this vulnerability is to confidentiality,...

8.6CVSS3.7AI score0.03325EPSS
Exploits0References4
CVE
CVE
added 2021/08/24 8:25 p.m.144 views

CVE-2021-32777

CVE-2021-32777 affects Envoy’s ext-authz extension, where sending request headers to the external authorization service fails to merge multiple value headers as required by HTTP spec. This can allow specially crafted requests to bypass authorization or escalate privileges when multiple-valued hea...

8.6CVSS8.5AI score0.03325EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder