CVE-2021-31920

CVE-2021-31920

Istio before 1.8.6 and 1.9.x before 1.9.5 has a remotely exploitable vulnerability where an HTTP request path with multiple slashes or escaped slash characters (%2F or %5C) could potentially bypass an Istio authorization policy when path based authorization rules are used.

Source: CVE-2021-31920

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다