CVE-2024-23324 | envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0 Downstream ext_authz access control (GHSA-gq3v-vvhj-96j6)

Çağlar Arlı - 15 Views

CVE-2024-23324 | envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0 Downstream ext_authz access control (GHSA-gq3v-vvhj-96j6)

A vulnerability has been found in envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0 and classified as critical. Affected by this vulnerability is the function ext_authz of the component Downstream Handler. The manipulation leads to improper access controls. This vulnerability is known as CVE-2024-23324. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

P	S	Ç	P	C	C	P
			1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29

Annanowa

CVE-2024-23324 | envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0 Downstream ext_authz access control (GHSA-gq3v-vvhj-96j6)

CVE-2024-23324 | envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0 Downstream ext_authz access control (GHSA-gq3v-vvhj-96j6)

Son Yazılar

Son Yorumlar