CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

CNVD•added 2021/05/21 12:0 a.m.•23 views

Envoy integer overflow vulnerability

Envoy is an open source distributed proxy server. versions prior to Envoy 1.71.1 are vulnerable to integer overflow, which can be exploited by an attacker with an excessive grpc-timeout value to cause an unexpected timeout calculation...

7.5CVSS6.2AI score0.00095EPSS

Exploits1References1

NVD•added 2021/05/20 5:15 p.m.•14 views

CVE-2021-28682

An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable integer overflow in which a very large grpc-timeout value leads to unexpected timeout calculations...

7.5CVSS0.00095EPSS

Exploits1References4

OSV•added 2021/05/20 5:15 p.m.•20 views

CVE-2021-28682

An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable integer overflow in which a very large grpc-timeout value leads to unexpected timeout calculations...

7.5CVSS7.5AI score

Exploits0References4

CVE•added 2021/05/20 4:15 p.m.•116 views

CVE-2021-28682

CVE-2021-28682 affects Envoy (through 1.71.1) with a remotely exploitable integer overflow triggered by an extremely large grpc-timeout value that leads to incorrect timeout calculations. The vulnerability details are corroborated across connected sources (BIT-ENVOY-2021-28682, OSV entries) and s...

7.5CVSS7.5AI score0.00095EPSS

Exploits1References4Affected Software1

Cvelist•added 2021/05/20 4:15 p.m.•19 views

CVE-2021-28682

An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable integer overflow in which a very large grpc-timeout value leads to unexpected timeout calculations...

7.9AI score0.00095EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by