CNNVD-202601-2559 Information

CNNVD ID

CNNVD-202601-2559

Related CVE

CVE-2026-23766

• CNNVD Published: 2026-01-15

Description (Chinese)

Istio是Istio开源的一套连接、管理和保护微服务的开放平台。 Istio 1.28.2及之前版本存在参数注入漏洞，该漏洞源于可通过注解注入iptables规则以更改防火墙行为。

Description (English)

Istio is an open platform for Istio to connect, manage and protect micro-services. Istio 1.2.8.2 and previous versions had a gap in parameters, which stemmed from changes in firewall behaviour through annotation into iptables rules.

Hazard Level

High

Vulnerability Type

参数注入

Affected Vendor

Istio

Published

2026-01-15

Last Modified

2026-02-24

References

https://github.com/istio/istio/issues/58781 https://github.com/istio/istio/pull/58785