Envoy Security Vulnerabilities and Issues — Envoy CVE List

Lucene search

EnvoyproxyEnvoy

4 matches found

CVE•added 2021/05/28 9:15 p.m.•117 views

CVE-2021-29492

Envoy is a cloud-native edge/middle/service proxy. Envoy does not decode escaped slash sequences %2F and %5C in HTTP URL paths in versions 1.18.2 and before. A remote attacker may craft a path with escaped slashes, e.g. /something%2F..%2Fadmin, to bypass access control, e.g. a block on /admin. A ba...

8.3CVSS8AI score0.07418EPSS

CVE•added 2021/05/20 5:15 p.m.•99 views

CVE-2021-28682

An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable integer overflow in which a very large grpc-timeout value leads to unexpected timeout calculations.

7.5CVSS7.5AI score0.00086EPSS

CVE•added 2021/05/20 5:15 p.m.•98 views

CVE-2021-29258

An issue was discovered in Envoy 1.14.0. There is a remotely exploitable crash for HTTP2 Metadata, because an empty METADATA map triggers a Reachable Assertion.

7.5CVSS7.4AI score0.00116EPSS

CVE•added 2021/05/20 5:15 p.m.•94 views

CVE-2021-28683

An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable NULL pointer dereference and crash in TLS when an unknown TLS alert code is received.

7.5CVSS7.4AI score0.00116EPSS