^{CVE-2022-21701:}Istio is an open platform to connect, manage, and secure microservices. In versions 1.12.0 and 1.12.1 Istio is vulnerable to a privilege escalation attack. Users who have `CREATE` permission for `gateways.gateway.networking.k8s.io` objects can escalate this privilege to create other resources that they may not have access to, such as `Pod`. This vulnerability impacts only an Alpha level feature, the Kubernetes Gateway API. This is not the same as the Istio Gateway type (gateways.networking.istio.io), which is not vulnerable. Users are advised to upgrade to resolve this issue. Users unable to upgrade should implement any of the following which will prevent this vulnerability: Remove the gateways.gateway.networking.k8s.io CustomResourceDefinition, set PILOT_ENABLE_GATEWAY_API_DEPLOYMENT_CONTROLLER=true environment variable in Istiod, or remove CREATE permissions for gateways.gateway.networking.k8s.io objects from untrusted users.

Industry ExposureMost to least

This section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.

1. Accommodation & Food Services
   Accommodation & Food Services
2. Administrative, Support, Waste Management & Remediation Services
   Administrative, Support, Waste Management & Remediation Services
3. Agriculture, Forestry Fishing & Hunting
   Agriculture, Forestry Fishing & Hunting
4. Arts, Entertainment & Recreation
   Arts, Entertainment & Recreation
5. Construction
   Construction
6. Educational Services
   Educational Services
7. Finance and Insurance
   Finance and Insurance
8. Health Care & Social Assistance
   Health Care & Social Assistance
9. Information
   Information
10. Management of Companies & Enterprises
    Management of Companies & Enterprises
11. Manufacturing
    Manufacturing
12. Mining
    Mining
13. Other Services (except Public Administration)
    Other Services (except Public Administration)
14. Professional, Scientific, & Technical Services
    Professional, Scientific, & Technical Services
15. Public Administration
    Public Administration
16. Real Estate Rental & Leasing
    Real Estate Rental & Leasing
17. Retail Trade
    Retail Trade
18. Transportation & Warehousing
    Transportation & Warehousing
19. Utilities
    Utilities
20. Wholesale Trade
    Wholesale Trade