CVE-2024-23325 | envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0 Proxy Protocol exceptional condition (GHSA-5m7c-mrwr-pm26)

Inserito da Angelo Barbosa | Feb 10, 2024 | CVE

A vulnerability classified as problematic has been found in envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0. Affected is an unknown function of the component Proxy Protocol Handler. The manipulation leads to handling of exceptional conditions.

This vulnerability is traded as CVE-2024-23325. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23325 | envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0 Proxy Protocol exceptional condition (GHSA-5m7c-mrwr-pm26)

Post correlati

CVE-2024-22363 | SheetJS Community Edition up to 0.20.1 redos

CVE-2023-6849 | kalcaddle kodbox up to 1.48 app.php cover path server-side request forgery

CVE-2024-39864 | Apache CloudStack up to 4.18.2.0/4.19.0.1 API Server initialization

CVE-2024-28194 | Yooooomi your_spotify up to 1.7.x JSON Web Token hard-coded credentials (GHSA-gvcr-g265-j827)