envoy
Security Risk Profile
Security Risk Score
Comprehensive risk assessment based on 32 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from March 19, 2019 to present
Threat Assessment
Severity Distribution
Exploit Likelihood
Age Distribution
Common Weaknesses (CWE)
Most Affected Products
Recent Vulnerabilities
See more →Envoy Query Parameter header_mutation.cc params.add injection
Envoy’s TLS certificate matcher for `match_typed_subject_alt_names` may incorrectly treat certificates containing an embedded null byte
Envoy forwards early CONNECT data in TCP proxy mode
Envoy crashes when JWT authentication is configured with the remote JWKS fetching
Envoy Lua filter use-after-free when oversized rewritten response body causes crash
Envoy allows large requests and responses to cause TCP connection pool crash
Envoy: oAuth2 Filter Signout route will not clear cookies because of missing "secure;" flag
Envoy: Race condition in Dynamic Forward Proxy leads to use-after-free and segmentation faults
Envoy vulnerable to bypass of RBAC uri_template permission
Envoy crashes when HTTP ext_proc processes local replies
Monitor envoy in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.