0.002 Low
EPSS
Percentile
59.2%
A flaw was found in envoy. When certificate validation settings are changed, incorrect configuration handling allows TLS session reuse without revalidation.
bugzilla.redhat.com/show_bug.cgi?id=2050753
github.com/envoyproxy/envoy/security/advisories/GHSA-5j4x-g36v-m283
nvd.nist.gov/vuln/detail/CVE-2022-21654
www.cve.org/CVERecord?id=CVE-2022-21654