Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-8537

Malware in sbrugna...

7.5CVSS7.6AI score0.01938EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:6 a.m.4 views

SUSE CVE-2019-18838

An issue was discovered in Envoy 1.12.0. Upon receipt of a malformed HTTP request without a Host header, it sends an internally generated "Invalid request" response. This internally generated response is dispatched through the configured encoder filter chain before being sent to the client. An...

7.5CVSS9.2AI score0.02142EPSS
Exploits1References10
SUSE CVE
SUSE CVE
added 2023/02/15 4:6 a.m.6 views

SUSE CVE-2019-18836

Envoy 1.12.0 allows a remote denial of service because of resource loops, as demonstrated by a single idle TCP connection being able to keep a worker thread in an infinite busy loop when continueonlistenerfilterstimeout is used."...

4.3CVSS9.1AI score0.01938EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2019/12/13 12:0 a.m.3 views

PT-2019-15674 · Envoy +1 · Envoy +1

Name of the Vulnerable Software and Affected Versions: Envoy version 1.12.0 Description: An issue was discovered where an untrusted remote client can send an HTTP header, such as the Host header, with whitespace after the header content. This allows the client to bypass matchers, for example, by...

9.8CVSS7.7AI score0.02457EPSS
Exploits1References27
RedhatCVE
RedhatCVE
added 2019/12/10 11:20 p.m.42 views

CVE-2019-18801

An issue was discovered in Envoy 1.12.0. An untrusted remote client may send HTTP/2 requests that write to the heap outside of the request buffers when the upstream is HTTP/1. This may be used to corrupt nearby heap contents leading to a query-of-death scenario or may be used to bypass Envoy's...

9.8CVSS2.7AI score0.02502EPSS
Exploits1References5
Rows per page
Query Builder