Openshift Service Mesh Security Vulnerabilities and Issues — Openshift Service Mesh CVE List

Lucene search

RedhatOpenshift Service Mesh

3 matches found

CVE•added 2020/03/04 9:15 p.m.•95 views

CVE-2020-8659

CNCF Envoy through 1.13.0 may consume excessive amounts of memory when proxying HTTP/1.1 requests or responses with many small (i.e. 1 byte) chunks.

7.5CVSS7.4AI score0.01026EPSS

CVE•added 2020/03/04 9:15 p.m.•89 views

CVE-2020-8661

CNCF Envoy through 1.13.0 may consume excessive amounts of memory when responding internally to pipelined requests.

7.5CVSS7.8AI score0.00571EPSS

CVE•added 2020/03/26 1:15 p.m.•84 views

CVE-2020-1764

A hard-coded cryptographic key vulnerability in the default configuration file was found in Kiali, all versions prior to 1.15.1. A remote attacker could abuse this flaw by creating their own JWT signed tokens and bypass Kiali authentication mechanisms, possibly gaining privileges to view and alter ...

8.6CVSS8.5AI score0.05246EPSS