SecAlerts
CVE ListPricingSign Up
envoyproxy logo

envoyproxy

Security Risk Profile

42
/100
medium

Security Risk Score

Comprehensive risk assessment based on 98 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from April 9, 2019 to present

98
Total CVEs
79
Critical+High
1
Exploited
34
Unpatched

Threat Assessment

Avg CVSS
7.6
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
34
Critical/High
Risk Level
42/100
medium
⚠️ 1 Active Exploits 1 Zero-Days

Severity Distribution

Critical
11
High
68
Medium
18
Low
1

Exploit Likelihood

>50% chance
0
20-50%
0
5-20%
0
<5%
12

Age Distribution

Common Weaknesses (CWE)

1
Use After Free
15
2
Input Validation
9
3
Null Pointer Dereference
9
4
Buffer Overflow
4
5
Path Traversal
2

Most Affected Products

1. Envoyproxy Envoy308
2. redhat/envoy51
3. go/github.com/envoyproxy/envoy37
4. redhat/servicemesh-proxy18
5. redhat/Envoy16

Recent Vulnerabilities

See more →
CVE-2026-26330
CVSS 7.5high

Envoy global rate limit may crash when the response phase limit is enabled and the response phase request is failed directly

3/10/2026🔧 No Patch
CVE-2026-26311
CVSS 5.9medium

Envoy HTTP: filter chain execution on reset streams causing UAF crash

3/10/2026🔧 No Patch
CVE-2026-26309
CVSS 5.3medium

Envoy has an off-by-one write in JsonEscaper::escapeString()

3/10/2026🔧 No Patch
CVE-2026-26308
CVSS 8.2high

Envoy has an RBAC Header Validation Bypass via Multi-Value Header Concatenation

3/10/2026
CVE-2026-26310
CVSS 7.5high

Crash for scoped ip address in Envoy during DNS

3/10/2026🔧 No Patch
CVE-2026-22771
CVSS 8.8EPSS 0%high

Envoy Extension Policy lua scripts injection causes arbitrary command execution

1/12/2026
CVE-2025-66220
CVSS 7.1high

Envoy’s TLS certificate matcher for `match_typed_subject_alt_names` may incorrectly treat certificates containing an embedded null byte

12/3/2025
CVE-2025-64763
CVSS 5.3medium

Envoy forwards early CONNECT data in TCP proxy mode

12/3/2025
CVE-2025-64527
CVSS 6.5medium

Envoy crashes when JWT authentication is configured with the remote JWKS fetching

12/3/2025
CVE-2025-62504
CVSS 7.5high

Envoy Lua filter use-after-free when oversized rewritten response body causes crash

10/16/2025🔧 No Patch

Monitor envoyproxy in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
Powered bySecAlerts

Monitor Your Software Stack in Real-Time

Get instant alerts when vulnerabilities are discovered in your software stack. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
AboutNewsDocumentationTermsContact

© 2026 SecAlerts Pty Ltd. All rights reserved.