Lucene search

K

77 matches found

CVE
CVE
added 2024/02/09 11:15 p.m.69 views

CVE-2024-23327

Envoy is a high-performance edge/middle/service proxy. When PPv2 is enabled both on a listener and subsequent cluster, the Envoy instance will segfault when attempting to craft the upstream PPv2 header. This occurs when the downstream request has a command type of LOCAL and does not have the protoc...

7.5CVSS7.4AI score0.00144EPSS
CVE
CVE
added 2024/12/18 8:15 p.m.68 views

CVE-2024-53270

Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions sendOverloadError is going to assume the active request exists when envoy.load_shed_points.http1_server_abort_dispatch is configured. If active_request is nullptr, only onMessageBeginImpl() is called. However, ...

7.5CVSS7.4AI score0.00226EPSS
CVE
CVE
added 2019/04/25 3:29 p.m.62 views

CVE-2019-9900

When parsing HTTP/1.x header values, Envoy 1.9.0 and before does not reject embedded zero characters (NUL, ASCII 0x0). This allows remote attackers crafting header values containing embedded NUL characters to potentially bypass header matching rules, gaining access to unauthorized resources.

8.3CVSS8AI score0.00046EPSS
CVE
CVE
added 2020/12/15 1:15 a.m.62 views

CVE-2020-35470

Envoy before 1.16.1 logs an incorrect downstream address because it considers only the directly connected peer, not the information in the proxy protocol header. This affects situations with tcp-proxy as the network filter (not HTTP filters).

8.8CVSS8.5AI score0.00781EPSS
CVE
CVE
added 2023/07/25 6:15 p.m.57 views

CVE-2023-35941

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, a malicious client is able to construct credentials with permanent validity in some specific scenarios. This is caused by the some rare scenarios in...

9.8CVSS9AI score0.00042EPSS
CVE
CVE
added 2020/10/01 5:15 p.m.56 views

CVE-2020-25017

Envoy through 1.15.0 only considers the first value when multiple header values are present for some HTTP headers. Envoy’s setCopy() header map API does not replace all existing occurences of a non-inline header.

8.3CVSS8.1AI score0.00053EPSS
CVE
CVE
added 2023/07/25 7:15 p.m.56 views

CVE-2023-35944

Envoy is an open source edge and service proxy designed for cloud-native applications. Envoy allows mixed-case schemes in HTTP/2, however, some internal scheme checks are case-sensitive. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, this can lead to the rejection of requests with ...

8.2CVSS7.1AI score0.00007EPSS
CVE
CVE
added 2021/09/09 10:15 p.m.54 views

CVE-2021-39162

Pomerium is an open source identity-aware access proxy. Envoy, which Pomerium is based on, can abnormally terminate if an H/2 GOAWAY and SETTINGS frame are received in the same IO event. This can lead to a DoS in the presence of untrusted upstream servers. 0.15.1 contains an upgraded envoy binary w...

8.6CVSS8.4AI score0.00668EPSS
CVE
CVE
added 2019/12/13 1:15 p.m.53 views

CVE-2019-18838

An issue was discovered in Envoy 1.12.0. Upon receipt of a malformed HTTP request without a Host header, it sends an internally generated "Invalid request" response. This internally generated response is dispatched through the configured encoder filter chain before being sent to the client. An enco...

7.5CVSS8.3AI score0.00099EPSS
CVE
CVE
added 2021/09/09 11:15 p.m.53 views

CVE-2021-39206

Pomerium is an open source identity-aware access proxy. Envoy, which Pomerium is based on, contains two authorization related vulnerabilities CVE-2021-32777 and CVE-2021-32779. This may lead to incorrect routing or authorization policy decisions. With specially crafted requests, incorrect authoriza...

8.6CVSS8.7AI score0.00162EPSS
CVE
CVE
added 2024/02/09 11:15 p.m.52 views

CVE-2024-23325

Envoy is a high-performance edge/middle/service proxy. Envoy crashes in Proxy protocol when using an address type that isn’t supported by the OS. Envoy is susceptible to crashing on a host with IPv6 disabled and a listener config with proxy protocol enabled when it receives a request where the clie...

7.5CVSS7.3AI score0.00042EPSS
CVE
CVE
added 2020/10/01 5:15 p.m.51 views

CVE-2020-25018

Envoy master between 2d69e30 and 3b5acb2 may fail to parse request URL that requires host canonicalization.

7.5CVSS7.5AI score0.02911EPSS
CVE
CVE
added 2024/09/20 12:15 a.m.50 views

CVE-2024-45808

Envoy is a cloud-native high-performance edge/middle/service proxy. A vulnerability has been identified in Envoy that allows malicious attackers to inject unexpected content into access logs. This is achieved by exploiting the lack of validation for the REQUESTED_SERVER_NAME field for access logger...

6.5CVSS6.7AI score0.00027EPSS
CVE
CVE
added 2024/06/04 9:15 p.m.49 views

CVE-2024-23326

Envoy is a cloud-native, open source edge and service proxy. A theoretical request smuggling vulnerability exists through Envoy if a server can be tricked into adding an upgrade header into a response. Per RFC https://www.rfc-editor.org/rfc/rfc7230#section-6.7 a server sends 101 when switching prot...

8.2CVSS6.6AI score0.00043EPSS
CVE
CVE
added 2024/06/04 9:15 p.m.49 views

CVE-2024-34364

Envoy is a cloud-native, open source edge and service proxy. Envoy exposed an out-of-memory (OOM) vector from the mirror response, since async HTTP client will buffer the response with an unbounded buffer.

6.5CVSS6.3AI score0.00019EPSS
CVE
CVE
added 2021/09/09 10:15 p.m.45 views

CVE-2021-39204

Pomerium is an open source identity-aware access proxy. Envoy, which Pomerium is based on, incorrectly handles resetting of HTTP/2 streams with excessive complexity. This can lead to high CPU utilization when a large number of streams are reset. This can result in a DoS condition. Pomerium versions...

7.5CVSS7.3AI score0.00407EPSS
CVE
CVE
added 2024/07/01 9:15 p.m.45 views

CVE-2024-39305

Envoy is a cloud-native, open source edge and service proxy. Prior to versions 1.30.4, 1.29.7, 1.28.5, and 1.27.7. Envoy references already freed memory when route hash policy is configured with cookie attributes. Note that this vulnerability has been fixed in the open as the effect would be immedi...

6.5CVSS6.6AI score0.00082EPSS
CVE
CVE
added 2025/05/07 10:15 p.m.45 views

CVE-2025-46821

Envoy is a cloud-native edge/middle/service proxy. Prior to versions 1.34.1, 1.33.3, 1.32.6, and 1.31.8, Envoy's URI template matcher incorrectly excludes the * character from a set of valid characters in the URI path. As a result URI path containing the * character will not match a URI template ex...

5.3CVSS5.1AI score0.00106EPSS
CVE
CVE
added 2024/02/09 11:15 p.m.42 views

CVE-2024-23323

Envoy is a high-performance edge/middle/service proxy. The regex expression is compiled for every request and can result in high CPU usage and increased request latency when multiple routes are configured with such matchers. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and 1.26...

5.3CVSS5AI score0.00011EPSS
CVE
CVE
added 2024/12/18 8:15 p.m.41 views

CVE-2024-53269

Envoy is a cloud-native high-performance edge/middle/service proxy. When additional address are not ip addresses, then the Happy Eyeballs sorting algorithm will crash in data plane. This issue has been addressed in releases 1.32.2, 1.31.4, and 1.30.8. Users are advised to upgrade. Users unable to u...

4.5CVSS4.7AI score0.00037EPSS
CVE
CVE
added 2024/12/18 8:15 p.m.40 views

CVE-2024-53271

Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions envoy does not properly handle http 1.1 non-101 1xx responses. This can lead to downstream failures in networked devices. This issue has been addressed in versions 1.31.5 and 1.32.3. Users are advised to upgrad...

7.1CVSS6.9AI score0.00072EPSS
CVE
CVE
added 2024/06/04 9:15 p.m.39 views

CVE-2024-32976

Envoy is a cloud-native, open source edge and service proxy. Envoyproxy with a Brotli filter can get into an endless loop during decompression of Brotli data with extra input.

7.5CVSS7.6AI score0.0001EPSS
CVE
CVE
added 2024/09/20 12:15 a.m.37 views

CVE-2024-45807

Envoy is a cloud-native high-performance edge/middle/service proxy. Envoy's 1.31 is using oghttp as the default HTTP/2 codec, and there are potential bugs around stream management in the codec. To resolve this Envoy will switch off the oghttp2 by default. The impact of this issue is that envoy will...

7.5CVSS7.5AI score0.0002EPSS
CVE
CVE
added 2024/06/04 9:15 p.m.31 views

CVE-2024-34363

Envoy is a cloud-native, open source edge and service proxy. Due to how Envoy invoked the nlohmann JSON library, the library could throw an uncaught exception from downstream data if incomplete UTF-8 strings were serialized. The uncaught exception would cause Envoy to crash.

7.5CVSS7.6AI score0.0001EPSS
CVE
CVE
added 2024/06/04 9:15 p.m.29 views

CVE-2024-32974

Envoy is a cloud-native, open source edge and service proxy. A crash was observed in EnvoyQuicServerStream::OnInitialHeadersComplete() with following call stack. It is a use-after-free caused by QUICHE continuing push request headers after StopReading() being called on the stream. As after StopRead...

7.5CVSS6.6AI score0.00015EPSS
CVE
CVE
added 2024/06/04 9:15 p.m.23 views

CVE-2024-32975

Envoy is a cloud-native, open source edge and service proxy. There is a crash at QuicheDataReader::PeekVarInt62Length(). It is caused by integer underflow in the QuicStreamSequencerBuffer::PeekRegion() implementation.

7.5CVSS6.5AI score0.00023EPSS
CVE
CVE
added 2024/06/04 9:15 p.m.19 views

CVE-2024-34362

Envoy is a cloud-native, open source edge and service proxy. There is a use-after-free in HttpConnectionManager (HCM) with EnvoyQuicServerStream that can crash Envoy. An attacker can exploit this vulnerability by sending a request without FIN, then a RESET_STREAM frame, and then after receiving the...

5.9CVSS6AI score0.00015EPSS
Total number of security vulnerabilities77