CVE-2025-30157

Medium CVSS: 6.5

Envoy is a cloud-native high-performance edge/middle/service proxy. Prior to 1.33.1, 1.32.4, 1.31.6, and 1.30.10, Envoy's ext_proc HTTP filter is at risk of crashing if a local reply is sent to the external server due to the filter's life time issue. A known situation is the failure of a websocket handshake will trigger a local reply leading to the crash of Envoy. This vulnerability is fixed in 1.33.1, 1.32.4, 1.31.6, and 1.30.10.

Vendor

Envoyproxy

Product

Envoy

CWE

CWE-460

Yayın Tarihi

2025-03-21 15:15:43

Güncelleme

2025-04-01 20:22:34

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-460 Envoy MEDIUM Envoyproxy 2025

Referanslar

https://github.com/envoyproxy/envoy/commit/8eda1b8ef5ba8663d16a737ab99458c039a9b53c https://github.com/envoyproxy/envoy/security/advisories/GHSA-cf3q-gqg7-3fm9 https://github.com/envoyproxy/envoy/security/advisories/GHSA-cf3q-gqg7-3fm9

Benzer Kayıtlar

Medium

CVE-2026-26310

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, calling Utility::ge…

Medium

CVE-2026-26311

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, a logic vulnerabili…

Medium

CVE-2026-26330

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, At the rate limit f…

High

CVE-2026-26308

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, the Envoy RBAC (Rol…

Medium

CVE-2026-26309

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, an off-by-one write…

High

CVE-2026-22771

Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based application gateway…