A vulnerability has been found in Envoy up to 1.28.6/1.29.4/1.30.0 and classified as critical. This vulnerability affects unknown code. The manipulation of the argument internal_address_config leads to authorization bypass.
This vulnerability was named CVE-2024-45806. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.