Lucene search
+L

8 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:40 a.m.5 views

SUSE CVE-2021-32779

Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. In affected versions envoy incorrectly handled a URI 'fragment' element as part of the path element. Envoy is configured with an RBAC filter for authorization or similar mechanism with...

8.6CVSS8.5AI score0.00948EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2021/11/09 12:0 a.m.41 views

olcne istio istio kubernetes security update

olcne 1.3.2-2 - Turn off default PodDisruptionBudget in istio template to unblock kubernetes module upgrade - Update Kubernetes version to 1.20.11 to address CVE-2021-25741 - Update Istio to 1.9.8, 1.10.4 to address CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781 -...

8.8CVSS7.8AI score0.06873EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2021/08/25 9:37 a.m.36 views

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.0.7.1 security update

An update for servicemesh and servicemesh-proxy is now available for OpenShift Service Mesh 2.0. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.6CVSS7.1AI score0.03325EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2021/08/25 9:37 a.m.60 views

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 1.1.17.1 security update

An update for servicemesh and servicemesh-proxy is now available for OpenShift Service Mesh 1.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.6CVSS7.1AI score0.03325EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2021/08/25 12:0 a.m.42 views

RHEL 8 : Red Hat OpenShift Service Mesh 2.0.7.1 (RHSA-2021:3272)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3272 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

8.6CVSS7.7AI score0.03325EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2021/08/25 12:0 a.m.28 views

RHEL 8 : Red Hat OpenShift Service Mesh 1.1.17.1 (RHSA-2021:3273)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3273 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

8.6CVSS7.7AI score0.03325EPSS
Exploits0References12
Cvelist
Cvelist
added 2021/08/24 8:45 p.m.24 views

CVE-2021-32779 Incorrectly handling of URI '#fragment' element as part of the path element

Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. In affected versions envoy incorrectly handled a URI 'fragment' element as part of the path element. Envoy is configured with an RBAC filter for authorization or similar mechanism with...

8.6CVSS8.8AI score0.00948EPSS
Exploits0References2
CVE
CVE
added 2021/08/24 8:45 p.m.148 views

CVE-2021-32779

CVE-2021-32779 affects Envoy, where a URI with a '#fragment' can be misinterpreted as part of the path. In affected Envoy releases prior to 1.18.0, or 1.18.0+ with path_normalization=false, the fragment may be treated as a path suffix (e.g., /admin#foo) and fail path checks, potentially leaking t...

8.6CVSS8.5AI score0.00948EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder