Lucene search
GoogleOSV:CVE-2021-31920HistoryMay 27, 2021 - 5:15 a.m.
CVE-2021-31920
2021-05-2705:15:06
Google
osv.dev
10
istio
vulnerability
bypass
authorization
http
request
path-based
Istio before 1.8.6 and 1.9.x before 1.9.5 has a remotely exploitable vulnerability where an HTTP request path with multiple slashes or escaped slash characters (%2F or %5C) could potentially bypass an Istio authorization policy when path based authorization rules are used.
Related
cvelist
cvelist
CVE-2021-31920
2021-05-27 04:03:31
prion
prion
Path traversal
2021-05-27 05:15:00
cve
cve
CVE-2021-31920
2021-05-27 05:15:06
veracode
veracode
Privilege Escalation
2021-05-13 10:28:52
osv
osv
Istio Authorization Bypass Vulnerability
2022-05-24 19:03:32
github
github
Istio Authorization Bypass Vulnerability
2022-05-24 19:03:32
nvd
nvd
CVE-2021-31920
2021-05-27 05:15:06
redhatcve
redhatcve
CVE-2021-31920
2021-05-11 20:55:56
nessus
nessus
RHEL 8 : Red Hat OpenShift Service Mesh 1.1.14 (RHSA-2021:1540)
2021-05-13 00:00:00
RHEL 8 : Red Hat OpenShift Service Mesh 2.0.4 (RHSA-2021:1538)
2021-05-12 00:00:00
Oracle Linux 7 : olcne (ELSA-2021-9397)
2021-08-06 00:00:00
redhat
redhat
oraclelinux
oraclelinux
olcne security update
2021-08-06 00:00:00
olcne security update
2021-08-06 00:00:00
olcne security update
2021-08-06 00:00:00