CVE-2026-48497 | envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 incorrect operator (GHSA-j6g2-wf95-q66q)

Inserito da Angelo Barbosa | Giu 26, 2026 | CVE

A vulnerability identified as problematic has been detected in envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0. Affected by this vulnerability is an unknown functionality. This manipulation causes use of incorrect operator.

This vulnerability is handled as CVE-2026-48497. The attack can be initiated remotely. There is not any exploit available.

You should upgrade the affected component.

CVE-2026-48497 | envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 incorrect operator (GHSA-j6g2-wf95-q66q)

Post correlati

CVE-2025-0340 | code-projects Cinema Seat Reservation System 1.0 /admin/deleteBooking.php id sql injection

CVE-2024-12439 | Marketplace Items Plugin up to 1.5.5 on WordPress Shortcode cross site scripting

CVE-2025-0929 | Lewe TeamCal Neo 3.8.2 /teamcal/src/index.php abs sql injection

CVE-2024-3370 | Egebilgi Software Website Template prior 29.04.2024 sql injection