Envoyproxy

Gateway

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2026-22771

  • EPSS 0.16%
  • Veröffentlicht 12.01.2026 18:08:22
  • Zuletzt bearbeitet 13.01.2026 14:03:18

Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based application gateway. Prior to 1.5.7 and 1.6.2, EnvoyExtensionPolicy Lua scripts executed by Envoy proxy can be used to leak the proxy's credentials. ...

5.3

CVE-2025-25294

  • EPSS 0.32%
  • Veröffentlicht 06.03.2025 19:15:27
  • Zuletzt bearbeitet 04.09.2025 13:52:34

Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based application gateway. In all Envoy Gateway versions prior to 1.2.7 and 1.3.1 a default Envoy Proxy access log configuration is used. This format is vu...

7.1

CVE-2025-24030

  • EPSS 0.22%
  • Veröffentlicht 23.01.2025 04:15:07
  • Zuletzt bearbeitet 04.09.2025 14:02:18

Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based application gateway. A user with access to the Kubernetes cluster can use a path traversal attack to execute Envoy Admin interface commands on proxie...