Vulnerabilities > CVE-2020-16844 - Unspecified vulnerability in Istio
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE network
istio
Summary
In Istio 1.5.0 though 1.5.8 and Istio 1.6.0 through 1.6.7, when users specify an AuthorizationPolicy resource with DENY actions using wildcard suffixes (e.g. *-some-suffix) for source principals or namespace fields, callers will never be denied access, bypassing the intended policy.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | Istio
| 31 |