Envoyproxy

Envoy

110 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 1.06%
  • Veröffentlicht 22.02.2022 23:15:11
  • Zuletzt bearbeitet 21.11.2024 06:45:09

Envoy is an open source edge and service proxy, designed for cloud-native applications. Envoy's tls allows re-use when some cert validation settings have changed from their default configuration. The only workaround for this issue is to ensure that d...

  • EPSS 1.13%
  • Veröffentlicht 22.02.2022 23:15:11
  • Zuletzt bearbeitet 21.11.2024 06:45:09

Envoy is an open source edge and service proxy, designed for cloud-native applications. The envoy common router will segfault if an internal redirect selects a route configured with direct response or redirect actions. This will result in a denial of...

  • EPSS 0.77%
  • Veröffentlicht 22.02.2022 23:15:11
  • Zuletzt bearbeitet 21.11.2024 06:45:10

Envoy is an open source edge and service proxy, designed for cloud-native applications. The default_validator.cc implementation used to implement the default certificate validation routines has a "type confusion" bug when processing subjectAltNames. ...

  • EPSS 0.51%
  • Veröffentlicht 22.02.2022 23:15:11
  • Zuletzt bearbeitet 21.11.2024 06:45:10

Envoy is an open source edge and service proxy, designed for cloud-native applications. In affected versions Envoy does not restrict the set of certificates it accepts from the peer, either as a TLS client or a TLS server, to only those certificates ...

  • EPSS 1%
  • Veröffentlicht 22.02.2022 23:15:11
  • Zuletzt bearbeitet 21.11.2024 06:48:55

Envoy is an open source edge and service proxy, designed for cloud-native applications. When a cluster is deleted via Cluster Discovery Service (CDS) all idle connections established to endpoints in that cluster are disconnected. A recursion was intr...

  • EPSS 1.05%
  • Veröffentlicht 22.02.2022 23:15:10
  • Zuletzt bearbeitet 21.11.2024 06:29:52

Envoy is an open source edge and service proxy, designed for cloud-native applications. In affected versions a crafted request crashes Envoy when a CONNECT request is sent to JWT filter configured with regex match. This provides a denial of service a...

  • EPSS 0.86%
  • Veröffentlicht 22.02.2022 23:15:10
  • Zuletzt bearbeitet 21.11.2024 06:29:52

Envoy is an open source edge and service proxy, designed for cloud-native applications. Sending a locally generated response must stop further processing of request or response data. Envoy tracks the amount of buffered request and response data and a...

  • EPSS 1.05%
  • Veröffentlicht 22.02.2022 23:15:10
  • Zuletzt bearbeitet 21.11.2024 06:29:52

Envoy is an open source edge and service proxy, designed for cloud-native applications. In affected versions of Envoy a crash occurs when configured for :ref:`upstream tunneling <envoy_v3_api_field_extensions.filters.network.tcp_proxy.v3.TcpProxy.tun...

  • EPSS 1.46%
  • Veröffentlicht 09.09.2021 23:15:13
  • Zuletzt bearbeitet 21.11.2024 06:18:53

Pomerium is an open source identity-aware access proxy. Envoy, which Pomerium is based on, contains two authorization related vulnerabilities CVE-2021-32777 and CVE-2021-32779. This may lead to incorrect routing or authorization policy decisions. Wit...

  • EPSS 1.64%
  • Veröffentlicht 09.09.2021 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:18:45

Pomerium is an open source identity-aware access proxy. Envoy, which Pomerium is based on, can abnormally terminate if an H/2 GOAWAY and SETTINGS frame are received in the same IO event. This can lead to a DoS in the presence of untrusted *upstream* ...