CVE-2024-45810 | Envoy up to 1.28.6/1.29.4/1.30.0 sendLocalReply memory corruption (GHSA-qm74-x36m-555q)

Posted by Angelo Barbosa | Sep 20, 2024 | CVE

A vulnerability was found in Envoy up to 1.28.6/1.29.4/1.30.0. It has been rated as critical. Affected by this issue is the function sendLocalReply. The manipulation leads to memory corruption.

This vulnerability is handled as CVE-2024-45810. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45810 | Envoy up to 1.28.6/1.29.4/1.30.0 sendLocalReply memory corruption (GHSA-qm74-x36m-555q)

Related Posts

CVE-2023-31002 | IBM Security Verify Access Appliance up to 10.0.6.1 missing encryption (XFDB-254657)

CVE-2024-6984 | Canonical Juju up to 2.9.49/3.1.8/3.3.4/3.4.4/3.5.2 Context ID information exposure (GHSA-6vjm-54vp-mxhx)

CVE-2024-41629 | Texas Instruments Fusion Digital Power Designer 7.10.1 prefs-shared.xml cleartext storage

CVE-2024-7578 | Alien Technology ALR-F800 up to 19.10.24.00 /var/www/cmd.php cmd improper authorization