Vulnerabilities > Envoyproxy

DATE CVE VULNERABILITY TITLE RISK
2022-06-09 CVE-2022-29225 Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in Envoyproxy Envoy
Envoy is a cloud-native high-performance proxy.
network
low complexity
envoyproxy CWE-409
5.0
2022-06-09 CVE-2022-29226 Missing Authentication for Critical Function vulnerability in Envoyproxy Envoy
Envoy is a cloud-native high-performance proxy.
network
low complexity
envoyproxy CWE-306
6.4
2022-06-09 CVE-2022-29227 Use After Free vulnerability in Envoyproxy Envoy
Envoy is a cloud-native high-performance edge/middle/service proxy.
network
low complexity
envoyproxy CWE-416
5.0
2022-06-09 CVE-2022-29228 Reachable Assertion vulnerability in Envoyproxy Envoy
Envoy is a cloud-native high-performance proxy.
network
low complexity
envoyproxy CWE-617
5.0
2022-06-09 CVE-2022-29224 NULL Pointer Dereference vulnerability in Envoyproxy Envoy
Envoy is a cloud-native high-performance proxy.
network
high complexity
envoyproxy CWE-476
5.9
2022-02-22 CVE-2021-43824 NULL Pointer Dereference vulnerability in Envoyproxy Envoy
Envoy is an open source edge and service proxy, designed for cloud-native applications.
4.3
2022-02-22 CVE-2021-43825 Use After Free vulnerability in Envoyproxy Envoy
Envoy is an open source edge and service proxy, designed for cloud-native applications.
network
low complexity
envoyproxy CWE-416
5.0
2022-02-22 CVE-2021-43826 Use After Free vulnerability in Envoyproxy Envoy
Envoy is an open source edge and service proxy, designed for cloud-native applications.
4.3
2022-02-22 CVE-2022-21654 Improper Certificate Validation vulnerability in Envoyproxy Envoy
Envoy is an open source edge and service proxy, designed for cloud-native applications.
6.8
2022-02-22 CVE-2022-21655 Always-Incorrect Control Flow Implementation vulnerability in Envoyproxy Envoy
Envoy is an open source edge and service proxy, designed for cloud-native applications.
4.3