Vulnerabilities > Envoyproxy > Envoy > 1.2.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-22 | CVE-2021-43825 | Use After Free vulnerability in Envoyproxy Envoy Envoy is an open source edge and service proxy, designed for cloud-native applications. | 5.0 |
| 2022-02-22 | CVE-2021-43826 | Use After Free vulnerability in Envoyproxy Envoy Envoy is an open source edge and service proxy, designed for cloud-native applications. | 4.3 |
| 2022-02-22 | CVE-2022-21655 | Always-Incorrect Control Flow Implementation vulnerability in Envoyproxy Envoy Envoy is an open source edge and service proxy, designed for cloud-native applications. | 4.3 |
| 2022-02-22 | CVE-2022-21656 | Type Confusion vulnerability in Envoyproxy Envoy Envoy is an open source edge and service proxy, designed for cloud-native applications. | 5.9 |
| 2022-02-22 | CVE-2022-21657 | Improper Certificate Validation vulnerability in Envoyproxy Envoy Envoy is an open source edge and service proxy, designed for cloud-native applications. | 4.0 |
| 2021-09-09 | CVE-2021-39206 | Incorrect Authorization vulnerability in multiple products Pomerium is an open source identity-aware access proxy. | 5.0 |
| 2021-09-09 | CVE-2021-39162 | Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products Pomerium is an open source identity-aware access proxy. | 5.0 |
| 2021-09-09 | CVE-2021-39204 | Excessive Iteration vulnerability in multiple products Pomerium is an open source identity-aware access proxy. | 5.0 |
| 2021-05-28 | CVE-2021-29492 | Path Traversal vulnerability in Envoyproxy Envoy Envoy is a cloud-native edge/middle/service proxy. | 7.5 |
| 2020-12-15 | CVE-2020-35471 | Unspecified vulnerability in Envoyproxy Envoy Envoy before 1.16.1 mishandles dropped and truncated datagrams, as demonstrated by a segmentation fault for a UDP packet size larger than 1500. | 5.0 |