Istio: 1.8.6 → 1.27.8
Istio · upgrade impact · Official site ↗
Fixed by upgrading to 1.27.8 iVulnerabilities that affect 1.8.6 but no longer affect 1.27.8 — the security gain from this upgrade, by exploited status then exploitation probability.
Exploited first, then by exploitation probability (EPSS).
CVE-2023-44487 HIGH exploited EPSS 100% ✓ cleared in 1.27.8 CVE-2021-34824 HIGH EPSS 2% ✓ cleared in 1.27.8 CVE-2022-23635 HIGH EPSS 2% ✓ cleared in 1.27.8 CVE-2022-24726 HIGH EPSS 2% ✓ cleared in 1.27.8 CVE-2021-39155 HIGH EPSS 1% ✓ cleared in 1.27.8 CVE-2021-39156 HIGH EPSS 1% ✓ cleared in 1.27.8 CVE-2022-39278 HIGH EPSS 1% ✓ cleared in 1.27.8 CVE-2022-31045 HIGH EPSS 1% ✓ cleared in 1.27.8 CVE-2026-31837 HIGH EPSS 0% ✓ cleared in 1.27.8 CVE-2026-31838 MEDIUM EPSS 0% ✓ cleared in 1.27.8Still open in 1.27.8 iKnown vulnerabilities that affect 1.27.8 too — upgrading to it does not clear these.
These affect 1.27.8 as well — a later release may be needed.
CVE-2026-41413 MEDIUM EPSS 0% → fixed in 1.29.2 CVE-2026-39350 MEDIUM EPSS 0% → fixed in 1.29.2