Vulnerabilities > Envoyproxy > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-09 | CVE-2024-23325 | Improper Handling of Exceptional Conditions vulnerability in Envoyproxy Envoy Envoy is a high-performance edge/middle/service proxy. | 7.5 |
| 2024-02-09 | CVE-2024-23327 | NULL Pointer Dereference vulnerability in Envoyproxy Envoy Envoy is a high-performance edge/middle/service proxy. | 7.5 |
| 2023-10-10 | CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. | 7.5 |
| 2023-07-25 | CVE-2023-35943 | Use After Free vulnerability in Envoyproxy Envoy Envoy is an open source edge and service proxy designed for cloud-native applications. | 7.5 |
| 2023-07-13 | CVE-2023-35945 | Incomplete Cleanup vulnerability in multiple products Envoy is a cloud-native high-performance edge/middle/service proxy. | 7.5 |
| 2023-04-04 | CVE-2023-27496 | Unspecified vulnerability in Envoyproxy Envoy Envoy is an open source edge and service proxy designed for cloud-native applications. | 7.5 |
| 2022-06-09 | CVE-2022-29227 | Use After Free vulnerability in Envoyproxy Envoy Envoy is a cloud-native high-performance edge/middle/service proxy. | 7.5 |
| 2022-06-09 | CVE-2022-29228 | Use After Free vulnerability in Envoyproxy Envoy Envoy is a cloud-native high-performance proxy. | 7.5 |
| 2021-08-24 | CVE-2021-32777 | Incorrect Authorization vulnerability in Envoyproxy Envoy Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. | 7.5 |
| 2021-08-24 | CVE-2021-32779 | Incorrect Comparison vulnerability in Envoyproxy Envoy Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. | 8.3 |