envoyproxy
Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting envoyproxy.
- CVE-2026-48090Envoy HTTP: OAuth2 filter late async token completion after stream teardown (UAF / crash risk)5.9
- CVE-2026-47220Envoy: Segmentation fault when using %REQUESTED_SERVER_NAME% in log format7.5
- CVE-2026-47205Envoy: ext_authz Use-After-Free during Stream Teardown with Per-Route Overrides5.9
- CVE-2026-47692Envoy: PROXY Protocol v2 header generator emits "skipped" TLVs, causing 65 KB attacker-controlled spillover into the upstream application stream4.8
- CVE-2026-47207Envoy crashes if multiple unexpected ext_proc responses are packed into one gRPC message6.5
- CVE-2026-48706Envoy Heap Buffer Overflow in TcpStatsdSink5.9
- CVE-2026-47204Envoy: grpc_stats filter segfault on Connect protocol requests to direct_response routes6.5
- CVE-2026-47221Envoy: Null pointer deref in internal redirects5.9
- CVE-2026-48743Envoy: HTTP/3 to HTTP/1 request smuggling via headers-only request with nonzero Content-Length7.5
- CVE-2026-48497Envoy: Abnormal process termination in DNS UDP filter5.9
- CVE-2026-48044Envoy Zstd Decompressor: Ratio Check at Wrong Loop Depth lead to memory explosion7.5
- CVE-2026-48042Envoy: Stack overflow in destructor of highly nested JSON7.5
- CVE-2026-47778Envoy: Embedded NUL in TLS DNS SAN Truncation in the Default TLS Certificate Validator. (Auth Bypass)4.4
- CVE-2026-47775Envoy OAuth2 Filter: Padding Oracle via AES-256-CBC Cookie Decryption6.8
- CVE-2026-47774Envoy vulnerable to HTTP/2 memory exhaustion via cookie header size bypass and HPACK amplification7.5