CVE-2024-45810 | Envoy up to 1.28.6/1.29.4/1.30.0 sendLocalReply memory corruption (GHSA-qm74-x36m-555q)

Posted by Angelo Barbosa | Sep 20, 2024 | CVE

A vulnerability was found in Envoy up to 1.28.6/1.29.4/1.30.0. It has been rated as critical. Affected by this issue is the function sendLocalReply. The manipulation leads to memory corruption.

This vulnerability is handled as CVE-2024-45810. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45810 | Envoy up to 1.28.6/1.29.4/1.30.0 sendLocalReply memory corruption (GHSA-qm74-x36m-555q)

Related Posts

CVE-2024-32350 | Totolink X5000R 9.1.0cu.2350_B20230313 cstecgi.cgi ipsecPsk improper authentication

CVE-2024-20024 | MediaTek MT8678 Flashc out-of-bounds write (ALPS08541635)

CVE-2023-25701 | WhatArmy WatchTowerHQ Plugin up to 3.6.16 on WordPress privileges management

CVE-2024-1362 | Colibri Page Builder Plugin up to 1.0.253 on WordPress cp_shortcode_refresh cross-site request forgery