CVE-2025-25294 | Envoy Proxy up to 1.2.6/1.3.0 neutralization for logs (GHSA-mf24-chxh-hmvj)

Inserito da Angelo Barbosa | Mar 7, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in Envoy Proxy up to 1.2.6/1.3.0. This issue affects some unknown processing. The manipulation leads to improper output neutralization for logs.

The identification of this vulnerability is CVE-2025-25294. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-25294 | Envoy Proxy up to 1.2.6/1.3.0 neutralization for logs (GHSA-mf24-chxh-hmvj)

Post correlati

CVE-2024-27899 | SAP NetWeaver AS Java User Management Engine 7.50 User Admin Application password recovery

CVE-2024-52021 | Netgear R8500 1.0.2.160 bsw_fix.cgi bsw_fix wan_gateway command injection

CVE-2024-21869 | Rapid SCADA up to 5.8.4 credentials storage (icsa-24-011-03)

CVE-2024-46778 | Linux Kernel up to 6.10.9 AMD Display CalculateSwathAndDETConfiguration_params_st Privilege Escalation (4e2b49a85e79/a7b38c785209)