9 matches found
CVE-2025-14038
EDB Hybrid Manager contains a flaw that allows an unauthenticated attacker to directly access certain gRPC endpoints. This could allow an attacker to read potentially sensitive data or possibly cause a denial-of-service by writing malformed data to certain gRPC endpoints. This flaw has been...
CVE-2025-14038
EDB Hybrid Manager contains a flaw that allows an unauthenticated attacker to directly access certain gRPC endpoints. This could allow an attacker to read potentially sensitive data or possibly cause a denial-of-service by writing malformed data to certain gRPC endpoints. This flaw has been...
CVE-2025-14038
EDB Hybrid Manager contains a flaw that allows an unauthenticated attacker to directly access certain gRPC endpoints. This could allow an attacker to read potentially sensitive data or possibly cause a denial-of-service by writing malformed data to certain gRPC endpoints. This flaw has been...
CVE-2025-14038
EDB Hybrid Manager contains a flaw that allows an unauthenticated attacker to directly access certain gRPC endpoints. This could allow an attacker to read potentially sensitive data or possibly cause a denial-of-service by writing malformed data to certain gRPC endpoints. This flaw has been...
CVE-2025-14038
EDB Hybrid Manager contains a flaw that allows an unauthenticated attacker to directly access certain gRPC endpoints. This could allow an attacker to read potentially sensitive data or possibly cause a denial-of-service by writing malformed data to certain gRPC endpoints. This flaw has been...
EUVD-2025-203403
EDB Hybrid Manager contains a flaw that allows an unauthenticated attacker to directly access certain gRPC endpoints. This could allow an attacker to read potentially sensitive data or possibly cause a denial-of-service by writing malformed data to certain gRPC endpoints. This flaw has been...
CVE-2025-14038
EDB Hybrid Manager is affected by an unauthenticated-access flaw that allows direct access to certain gRPC endpoints due to a misconfiguration in the Istio Gateway, bypassing authentication and authorization. This can lead to potential data disclosure or denial-of-service by sending malformed dat...
PT-2025-51263
Name of the Vulnerable Software and Affected Versions EDB Hybrid Manager versions prior to 1.3.3 EDB Hybrid Manager - Innovation versions prior to 2025.12 EDB Hybrid Manager - LTS versions prior to 1.3.3 Description EDB Hybrid Manager has a flaw that allows an unauthenticated attacker to access...
istio/istio: authorization bypass when using AUTO_PASSTHROUGH
An authorization bypass vulnerability was found in istio. When the istio gateway is configured with TLS mode AUTOPASSTHROUGH, it is possible for a malicious user to bypass the authorization checks and gain access to protected services. The highest threat from this vulnerability is to data...