CVE-2021-39155Improper Handling of Case Sensitivity in Istio

CWE-178Improper Handling of Case SensitivityCWE-863Incorrect AuthorizationCWE-1289Improper Validation of Unsafe Equivalence in Input7 documents5 sources
Severity
7.5HIGHNVD
EPSS
0.2%
top 61.63%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Istio.io IstioIstio
Timeline
PublishedAug 24
Latest updateAug 30

Description

Istio is an open source platform for providing a uniform way to integrate microservices, manage traffic flow across microservices, enforce policies and aggregate telemetry data. According to [RFC 4343](https://datatracker.ietf.org/doc/html/rfc4343), Istio authorization policy should compare the hostname in the HTTP Host header in a case insensitive way, but currently the comparison is case sensitive. The proxy will route the request hostname in a case-insensitive way which means the authorizatio

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

NVDistio/istio1.10.01.10.4+2
Goistio.io/istio1.10.01.10.4+2
CVEListV5istio/istio1.9.8+2

🔴Vulnerability Details

2
GHSA
Authorization Policy Bypass Due to Case Insensitive Host Comparison2021-08-30
OSV
Authorization Policy Bypass Due to Case Insensitive Host Comparison2021-08-30

📋Vendor Advisories

1
Red Hat
istio/istio: HTTP request can bypass authorization mechanisms due to case insensitive host comparison2021-08-24

📐Framework References

3
CWE
Improper Validation of Unsafe Equivalence in Input
CWE
Incorrect Authorization
CWE
Improper Handling of Case Sensitivity
CVE-2021-39155 — Improper Handling of Case Sensitivity | cvebase