Lucene search
K

4 matches found

CNNVD
CNNVD
added 2025/12/03 12:0 a.m.4 views

Envoy 安全漏洞

Envoy is an Enphase open source gateway program for connecting smart home devices. A security vulnerability exists in Envoy versions 1.33.12, 1.34.10, 1.35.6, 1.36.2, and prior versions, which stems from a state desynchronization issue when processing CONNECT requests in TCP proxy mode...

5.3CVSS6.5AI score0.00282EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/03 12:0 a.m.4 views

Envoy 代码问题漏洞

Envoy is an Enphase open source gateway program for connecting smart home devices. A code issue vulnerability exists in Envoy versions 1.33.12, 1.34.10, 1.35.6, 1.36.2, and prior versions, which stems from a reentry error in the JWT authentication configuration that could lead to a crash...

6.5CVSS6.8AI score0.00497EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2025/10/22 11:23 p.m.2 views

SUSE CVE-2025-62504

Envoy is an open source edge and service proxy. Envoy versions earlier than 1.36.2, 1.35.6, 1.34.10, and 1.33.12 contain a use-after-free vulnerability in the Lua filter. When a Lua script executing in the response phase rewrites a response body so that its size exceeds the configured...

7.5CVSS6.8AI score0.00383EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.4 views

Envoy 资源管理错误漏洞

Envoy is an Enphase open source gateway program for connecting smart home devices. A resource management error vulnerability exists in Envoy versions prior to 1.36.2, prior to 1.35.6, prior to 1.34.10, and prior to 1.33.12, which stems from the presence of post-release reuse of Lua filters, which...

7.5CVSS6.4AI score0.00383EPSS
Exploits0References1
Rows per page
Query Builder