Lucene search

CVE-2024-32975 Envoy crashes in QuicheDataReader::PeekVarInt62Length()

🗓️ 04 Jun 2024 21:03:00Reported by GitHub_MType

Envoy QuicheDataReader CVE-2024-32975 integer underflow cras

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 10
Vulnrichment	CVE-2024-32975 Envoy crashes in QuicheDataReader::PeekVarInt62Length()	4 Jun 202421:00	–	vulnrichment
RedhatCVE	CVE-2024-32975	14 Jun 202402:12	–	redhatcve
NVD	CVE-2024-32975	4 Jun 202421:15	–	nvd
OSV	CVE-2024-32975	4 Jun 202421:15	–	osv
OSV	BIT-ENVOY-2024-32975	6 Jun 202407:18	–	osv
Veracode	Integer Underflow	6 Jun 202408:19	–	veracode
CVE	CVE-2024-32975	4 Jun 202421:15	–	cve
Tenable Nessus	Amazon Linux 2 : ecs-service-connect-agent (ALASECS-2024-037)	24 Jun 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : ecs-service-connect-agent (ALAS2023-2024-647)	24 Jun 202400:00	–	nessus
Tenable Nessus	Tenable.ad < 3.59.5 Multiple Vulnerabilities (TNS-2024-11)	8 Jul 202400:00	–	nessus

[
  {
    "vendor": "envoyproxy",
    "product": "envoy",
    "versions": [
      {
        "version": ">= 1.30.0, <= 11.30.1",
        "status": "affected"
      },
      {
        "version": ">= 1.29.0, <= 1.29.4",
        "status": "affected"
      },
      {
        "version": ">= 1.28.0, <= 1.28.3",
        "status": "affected"
      },
      {
        "version": "<= 1.27.5",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/envoyproxy/envoy/security/advisories/GHSA-g9mq-6v96-cpqc

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

04 Jun 2024 21:00Current

5.7Medium risk

Vulners AI Score5.7

CVSS35.9

EPSS0.00015

CWE-191