Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-41413 |
|
SSRF (Server-Side Request Forgery) in istio.io/istio (CVE-2026-41413)
SSRF in istio.io/istio (CVE-2026-41413). Risk of unauthorized operations or information disclosure. Exploitable via ``ValidatingAdmissionPolicy``. Mitigation: upgrade to `0.0.0-20260410004459-189832a289c1` or later.
|
| CVE-2026-31837 |
|
Information Disclosure in istio (CVE-2026-31837)
vulnerability in istio (CVE-2026-31837). Confidential information can be exposed externally. Mitigation: upgrade to `1.29.1` or later.
|
| CVE-2023-44487 KEV |
|
[KEV] Vulnerability in Ietf golang.org/x/net (CVE-2023-44487)
vulnerability in Ietf golang.org/x/net (CVE-2023-44487). Risk of unauthorized operations or information disclosure. Exploitable via ``Channel``. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `0.17.0` or later.
|