Vulnerabilities > CVE-2020-35471 - Unspecified vulnerability in Envoyproxy Envoy

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
envoyproxy
NVD
Published: 2020-12-15
Updated: 2020-12-16

Summary

Envoy before 1.16.1 mishandles dropped and truncated datagrams, as demonstrated by a segmentation fault for a UDP packet size larger than 1500.

Vulnerable Configurations

Part Description Count
Application
Envoyproxy
49

References