Lucene search
K

4 matches found

Amazon
Amazon
added 2024/11/14 12:0 a.m.6 views

Medium: ecs-service-connect-agent

Issue Overview: Envoy is a cloud-native high-performance edge/middle/service proxy. A security vulnerability in Envoy allows external clients to manipulate Envoy headers, potentially leading to unauthorized access or other malicious actions within the mesh. This issue arises due to Envoy's defaul...

7.5CVSS8.1AI score0.16212EPSS
Exploits2
Circl
Circl
added 2024/09/20 3:2 a.m.4 views

CVE-2024-45808

creationtimestamp| type| source ---|---|--- 2024-09-20 03:02:03+00:00| seen| https://t.me/cvedetector/6096...

6.5CVSS6.3AI score0.00353EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/19 11:34 p.m.12 views

CVE-2024-45808 Malicious log injection via access logs in envoy

Envoy is a cloud-native high-performance edge/middle/service proxy. A vulnerability has been identified in Envoy that allows malicious attackers to inject unexpected content into access logs. This is achieved by exploiting the lack of validation for the REQUESTEDSERVERNAME field for access logger...

6.5CVSS6.4AI score0.00353EPSS
Exploits0References1
OSV
OSV
added 2024/09/19 11:34 p.m.6 views

CVE-2024-45808 Malicious log injection via access logs in envoy

Envoy is a cloud-native high-performance edge/middle/service proxy. A vulnerability has been identified in Envoy that allows malicious attackers to inject unexpected content into access logs. This is achieved by exploiting the lack of validation for the REQUESTEDSERVERNAME field for access logger...

6.5CVSS6.3AI score0.00353EPSS
Exploits0References3
Rows per page
Query Builder