Vulnerabilities > Envoyproxy > Envoy
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-09 | CVE-2024-23322 | Use After Free vulnerability in Envoyproxy Envoy Envoy is a high-performance edge/middle/service proxy. | 7.5 |
| 2024-02-09 | CVE-2024-23323 | Resource Exhaustion vulnerability in Envoyproxy Envoy Envoy is a high-performance edge/middle/service proxy. | 5.3 |
| 2024-02-09 | CVE-2024-23324 | Unspecified vulnerability in Envoyproxy Envoy Envoy is a high-performance edge/middle/service proxy. | 7.5 |
| 2024-02-09 | CVE-2024-23325 | Improper Handling of Exceptional Conditions vulnerability in Envoyproxy Envoy Envoy is a high-performance edge/middle/service proxy. | 7.5 |
| 2024-02-09 | CVE-2024-23327 | NULL Pointer Dereference vulnerability in Envoyproxy Envoy Envoy is a high-performance edge/middle/service proxy. | 7.5 |
| 2023-10-10 | CVE-2023-44487 | Resource Exhaustion vulnerability in multiple products The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. | 7.5 |
| 2023-07-25 | CVE-2023-35942 | Use After Free vulnerability in Envoyproxy Envoy Envoy is an open source edge and service proxy designed for cloud-native applications. | 6.5 |
| 2023-07-25 | CVE-2023-35943 | Use After Free vulnerability in Envoyproxy Envoy Envoy is an open source edge and service proxy designed for cloud-native applications. | 7.5 |
| 2023-07-25 | CVE-2023-35944 | HTTP Request Smuggling vulnerability in Envoyproxy Envoy Envoy is an open source edge and service proxy designed for cloud-native applications. | 5.3 |
| 2023-07-25 | CVE-2023-35941 | Improper Encoding or Escaping of Output vulnerability in Envoyproxy Envoy Envoy is an open source edge and service proxy designed for cloud-native applications. | 9.8 |