Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Envoy — Vulnerabilities & Security Advisories 77

All 77 CVE vulnerabilities found in Envoy, with AI-generated Chinese analysis, references, and POCs.

Vendor: envoyproxy

CVE IDTitleCVSSSeverityPublished
CVE-2026-6994 Envoy Query Parameter header_mutation.cc params.add injection CWE-74 6.3 Medium2026-04-25
CVE-2026-26330 Envoy global rate limit may crash when the response phase limit is enabled and the response phase request is failed directly CWE-416 5.3 Medium2026-03-10
CVE-2026-26311 Envoy HTTP: filter chain execution on reset streams causing UAF crash CWE-416 5.9 Medium2026-03-10
CVE-2026-26310 Crash for scoped ip address in Envoy during DNS CWE-20 5.9 Medium2026-03-10
CVE-2026-26309 Envoy has an off-by-one write in JsonEscaper::escapeString() CWE-193 5.3 Medium2026-03-10
CVE-2026-26308 Envoy has an RBAC Header Validation Bypass via Multi-Value Header Concatenation CWE-863 7.5 High2026-03-10
CVE-2025-66220 Envoy’s TLS certificate matcher for `match_typed_subject_alt_names` may incorrectly treat certificates containing an embedded null byte CWE-170 5.0 Medium2025-12-03
CVE-2025-64763 Envoy forwards early CONNECT data in TCP proxy mode CWE-693 3.7 Low2025-12-03
CVE-2025-64527 Envoy crashes when JWT authentication is configured with the remote JWKS fetching CWE-476 6.5 Medium2025-12-03
CVE-2025-62504 Envoy Lua filter use-after-free when oversized rewritten response body causes crash CWE-416 6.5 Medium2025-10-16
CVE-2025-62409 Envoy allows large requests and responses to cause TCP connection pool crash CWE-476 7.5AIHighAI2025-10-16
CVE-2025-55162 Envoy: oAuth2 Filter Signout route will not clear cookies because of missing "secure;" flag CWE-613 6.3 Medium2025-09-03
CVE-2025-54588 Envoy: Race condition in Dynamic Forward Proxy leads to use-after-free and segmentation faults CWE-416 7.5 High2025-09-02
CVE-2025-46821 Envoy vulnerable to bypass of RBAC uri_template permission CWE-186 5.3 Medium2025-05-07
CVE-2025-30157 Envoy crashes when HTTP ext_proc processes local replies CWE-460 6.5 Medium2025-03-21
CVE-2024-53271 HTTP/1.1 multiple issues with envoy.reloadable_features.http1_balsa_delay_reset in envoy CWE-670 7.1 High2024-12-18
CVE-2024-53270 HTTP/1: sending overload crashes when the request is reset beforehand in envoy CWE-670 7.5 High2024-12-18
CVE-2024-53269 Happy Eyeballs: Validate that additional_address are IP addresses instead of crashing when sorting in envoy CWE-670 4.5 Medium2024-12-18
CVE-2024-45806 Potential manipulate `x-envoy` headers from external sources in envoy CWE-639 6.5 Medium2024-09-19
CVE-2024-45807 oghttp2 crash on OnBeginHeadersForStream in envoy CWE-670 7.5 High2024-09-19
CVE-2024-45808 Malicious log injection via access logs in envoy CWE-117 6.5 Medium2024-09-19
CVE-2024-45809 Jwt filter crash in the clear route cache with remote JWKs in envoy CWE-119 5.3 Medium2024-09-19
CVE-2024-45810 Envoy crashes for LocalReply in http async client CWE-119 6.5 Medium2024-09-19
CVE-2024-21879 URL parameter manipulations allows an authenticated attacker to execute arbitrary OS commands in Enphase IQ Gateway v4.x to v8.x and < v8.2.4225 CWE-77 8.8AIHighAI2024-08-10
CVE-2024-21877 Insecure File Generation Based on User Input in Enphase IQ Gateway version 4.x to 8.x and < 8.2.4225 CWE-22 8.1AIHighAI2024-08-10
CVE-2024-21878 Command Injection through Unsafe File Name Evaluation in internal script in Enphase IQ Gateway v4.x to and including 8.x CWE-77 8.8AIHighAI2024-08-10
CVE-2024-21880 URL parameter manipulations allows an authenticated attacker to execute arbitrary OS commands in Enphase IQ Gateway version 4.x <= 7.x CWE-77 8.8AIHighAI2024-08-10
CVE-2024-21881 Upload of encrypted packages allows authenticated command execution in Enphase IQ Gateway v4.x and v5.x CWE-326 8.8AIHighAI2024-08-10
CVE-2024-39305 Envoy Proxy use after free when route hash policy is configured with cookie attributes CWE-416 6.5 Medium2024-07-01
CVE-2024-32974 Envoy affected by a crash in EnvoyQuicServerStream::OnInitialHeadersComplete() CWE-416 5.9 Medium2024-06-04

All 77 known CVE vulnerabilities affecting Envoy with full Chinese analysis, references, and POCs where available.