Vulnerabilities > Istio > Istio > 1.15.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-10 | CVE-2023-44487 | Resource Exhaustion vulnerability in multiple products The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. | 7.5 |
| 2022-11-10 | CVE-2022-39388 | Incorrect Authorization vulnerability in Istio 1.15.0/1.15.1/1.15.2 Istio is an open platform to connect, manage, and secure microservices. | 3.5 |