2 matches found
PT-2022-19476 · Envoy · Envoy
Name of the Vulnerable Software and Affected Versions: Envoy versions prior to 1.22.1 Description: The issue affects Envoy, a cloud-native high-performance proxy, where versions prior to 1.22.1 are subject to a segmentation fault in the GrpcHealthCheckerImpl. Envoy has a feature to perform variou...
PT-2022-19477 · Envoy · Envoy
Name of the Vulnerable Software and Affected Versions: Envoy versions prior to 1.22.1 Description: The OAuth filter implementation in Envoy does not include a mechanism for validating access tokens. By design, when the HMAC signed cookie is missing, a full authentication flow should be triggered...