Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/05/09 9:32 p.m.24 views

CVE-2025-46821

Envoy is a cloud-native edge/middle/service proxy. Prior to versions 1.34.1, 1.33.3, 1.32.6, and 1.31.8, Envoy's URI template matcher incorrectly excludes the character from a set of valid characters in the URI path. As a result URI path containing the character will not match a URI template...

5.3CVSS6.7AI score0.0022EPSS
Exploits0References1
nvd
nvd
added 2025/05/07 10:15 p.m.38 views

CVE-2025-46821

Envoy is a cloud-native edge/middle/service proxy. Prior to versions 1.34.1, 1.33.3, 1.32.6, and 1.31.8, Envoy's URI template matcher incorrectly excludes the character from a set of valid characters in the URI path. As a result URI path containing the character will not match a URI template...

5.3CVSS0.0022EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/05/07 12:0 a.m.6 views

PT-2025-20297 · Envoy · Envoy

Name of the Vulnerable Software and Affected Versions: Envoy versions prior to 1.34.1 Envoy versions prior to 1.33.3 Envoy versions prior to 1.32.6 Envoy versions prior to 1.31.8 Description: The issue arises from Envoy's URI template matcher incorrectly excluding the character from a set of vali...

5.3CVSS6.4AI score0.0022EPSS
Exploits0References7
cvelist
cvelist
added 2024/02/09 10:50 p.m.16 views

CVE-2024-23323 Excessive CPU usage when URI template matcher is configured using regex in Envoy

Envoy is a high-performance edge/middle/service proxy. The regex expression is compiled for every request and can result in high CPU usage and increased request latency when multiple routes are configured with such matchers. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and...

4.3CVSS5.9AI score0.00504EPSS
Exploits0References2
Rows per page
Query Builder