Описание
Istio through 1.28.2 allows iptables rule injection for changing firewall behavior via the traffic.sidecar.istio.io/excludeInterfaces annotation. NOTE: the reporter's position is "this doesn't represent a security vulnerability (pod creators can already exclude sidecar injection entirely)."
EPSS
Процентиль: 4%
0.00019
Низкий
4.1 Medium
CVSS3
Дефекты
CWE-88
Связанные уязвимости
CVSS3: 4.1
github
4 дня назад
Istio through 1.28.2 allows iptables rule injection for changing firewall behavior via the traffic.sidecar.istio.io/excludeInterfaces annotation. NOTE: the reporter's position is "this doesn't represent a security vulnerability (pod creators can already exclude sidecar injection entirely)."
EPSS
Процентиль: 4%
0.00019
Низкий
4.1 Medium
CVSS3
Дефекты
CWE-88