Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2022/04/08 12:0 a.m.94 views

RHEL 8 : Red Hat OpenShift Service Mesh 2.1.2 (RHSA-2022:1275)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1275 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

9.8CVSS7.2AI score0.01651EPSS
Exploits0References21
RedHat Linux
RedHat Linux
added 2022/04/07 6:6 p.m.94 views

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.1.2 security update

Red Hat OpenShift Service Mesh 2.1.2 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References...

9.8CVSS6.8AI score0.01651EPSS
Exploits0References12
Cvelist
Cvelist
added 2022/02/22 10:15 p.m.39 views

CVE-2021-43824 Null pointer dereference in envoy

Envoy is an open source edge and service proxy, designed for cloud-native applications. In affected versions a crafted request crashes Envoy when a CONNECT request is sent to JWT filter configured with regex match. This provides a denial of service attack vector. The only workaround is to not use...

7.5CVSS7.9AI score0.01062EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/02/22 10:15 p.m.6 views

CVE-2021-43824 Null pointer dereference in envoy

Envoy is an open source edge and service proxy, designed for cloud-native applications. In affected versions a crafted request crashes Envoy when a CONNECT request is sent to JWT filter configured with regex match. This provides a denial of service attack vector. The only workaround is to not use...

7.5CVSS7AI score0.01062EPSS
Exploits0References2
CVE
CVE
added 2022/02/22 10:15 p.m.167 views

CVE-2021-43824

CVE-2021-43824 affects Envoy. In affected versions, a crafted request with a CONNECT to the JWT filter configured with a regex match can crash Envoy, enabling a denial-of-service. The root cause is tied to the JWT filter when regex matching is used. Impact is described as a partial availability l...

7.5CVSS7.2AI score0.01062EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder