ISTIO-SECURITY-2023-001

Multiple CVEs reported by Envoy.

Apr 4, 2023

Disclosure Details
CVE(s)CVE-2023-27496
CVE-2023-27488
CVE-2023-27493
CVE-2023-27492
CVE-2023-27491
CVE-2023-27487
CVSS Impact Score8.2 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Affected ReleasesAll releases prior to 1.15.0
1.15.0 to 1.15.6
1.16.0 to 1.16.3
1.17.0 to 1.17.1

CVE

Envoy CVEs

Am I Impacted?

You may be at risk if you have an Istio gateway or if you use external istiod.