Vulnerabilities > Envoyproxy

DATE CVE VULNERABILITY TITLE RISK
2021-09-09 CVE-2021-39206 Incorrect Authorization vulnerability in multiple products
Pomerium is an open source identity-aware access proxy.
network
low complexity
envoyproxy pomerium CWE-863
5.0
2021-09-09 CVE-2021-39162 Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products
Pomerium is an open source identity-aware access proxy.
network
low complexity
envoyproxy pomerium CWE-754
5.0
2021-09-09 CVE-2021-39204 Excessive Iteration vulnerability in multiple products
Pomerium is an open source identity-aware access proxy.
network
low complexity
envoyproxy pomerium CWE-834
5.0
2021-08-24 CVE-2021-32777 Incorrect Authorization vulnerability in Envoyproxy Envoy
Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures.
network
low complexity
envoyproxy CWE-863
7.5
2021-08-24 CVE-2021-32778 Excessive Iteration vulnerability in Envoyproxy Envoy
Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures.
network
low complexity
envoyproxy CWE-834
5.0
2021-08-24 CVE-2021-32779 Incorrect Authorization vulnerability in Envoyproxy Envoy
Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures.
network
low complexity
envoyproxy CWE-863
7.5
2021-08-24 CVE-2021-32780 Improper Check for Unusual or Exceptional Conditions vulnerability in Envoyproxy Envoy
Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures.
network
low complexity
envoyproxy CWE-754
5.0
2021-08-24 CVE-2021-32781 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Envoyproxy Envoy
Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures.
network
low complexity
envoyproxy CWE-119
5.0
2021-05-28 CVE-2021-29492 Path Traversal vulnerability in Envoyproxy Envoy
Envoy is a cloud-native edge/middle/service proxy.
network
low complexity
envoyproxy CWE-22
7.5
2021-05-20 CVE-2021-28682 Integer Overflow or Wraparound vulnerability in Envoyproxy Envoy
An issue was discovered in Envoy through 1.71.1.
network
low complexity
envoyproxy CWE-190
5.0