Vulnerabilities > Envoyproxy > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-09 | CVE-2021-39162 | Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products Pomerium is an open source identity-aware access proxy. | 5.0 |
| 2021-09-09 | CVE-2021-39204 | Excessive Iteration vulnerability in multiple products Pomerium is an open source identity-aware access proxy. | 5.0 |
| 2021-08-24 | CVE-2021-32778 | Excessive Iteration vulnerability in Envoyproxy Envoy Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. | 5.0 |
| 2021-08-24 | CVE-2021-32780 | Improper Check for Unusual or Exceptional Conditions vulnerability in Envoyproxy Envoy Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. | 5.0 |
| 2021-08-24 | CVE-2021-32781 | Classic Buffer Overflow vulnerability in Envoyproxy Envoy Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. | 5.0 |
| 2021-05-20 | CVE-2021-28682 | Integer Overflow or Wraparound vulnerability in Envoyproxy Envoy An issue was discovered in Envoy through 1.71.1. | 5.0 |
| 2021-05-20 | CVE-2021-28683 | NULL Pointer Dereference vulnerability in Envoyproxy Envoy 1.16.2/1.17.1 An issue was discovered in Envoy through 1.71.1. | 5.0 |
| 2021-05-20 | CVE-2021-29258 | Reachable Assertion vulnerability in Envoyproxy Envoy An issue was discovered in Envoy 1.14.0. | 5.0 |
| 2020-12-15 | CVE-2020-35471 | Unspecified vulnerability in Envoyproxy Envoy Envoy before 1.16.1 mishandles dropped and truncated datagrams, as demonstrated by a segmentation fault for a UDP packet size larger than 1500. | 5.0 |
| 2020-12-15 | CVE-2020-35470 | Unspecified vulnerability in Envoyproxy Envoy Envoy before 1.16.1 logs an incorrect downstream address because it considers only the directly connected peer, not the information in the proxy protocol header. low complexity envoyproxy | 5.8 |