Known vulnerabilities in Cloud Native Computing Foundation envoy

Vendor: Cloud Native Computing Foundation

Website: https://www.cncf.io/

Total Security Bulletins: 31

Security bulletins (31)

Secuity bulletin	Severity	Status	Published
SB2025121089: Denial of service in Envoy	Medium	Patched	10.12.2025
SB2025120345: Multiple vulnerabilities in Envoy	Medium	Patched	03.12.2025
SB2025120344: Bypass of RBAC uri_template permissions in Envoy	Medium	Patched	03.12.2025
SB2025110351: Envoy update for third-party components	High	Patched Public exploit	03.11.2025
SB2025102158: Denial of service in Envoy	Medium	Patched	21.10.2025
SB2025101625: Remote denial of service in Envoy	Medium	Patched	16.10.2025
SB2025090341: Multiple vulnerabilities in Envoy	Medium	Patched	03.09.2025
SB2025032123: Denial of service in Envoy	Medium	Patched	21.03.2025
SB2024121911: Multiple DoS vulnerabilities in Envoy	Medium	Patched	19.12.2024
SB2024121909: Denial of service in Envoy	Low	Patched	19.12.2024
SB2024092014: Multiple vulnerabilities in Envoy	Medium	Patched	20.09.2024
SB2024091611: Envoy update for cURL	Medium	Patched	16.09.2024
SB2024070150: Use-after-free in envoy	Medium	Patched	01.07.2024
SB2024060518: Multiple vulnerabilities in Envoy	Medium	Patched	05.06.2024
SB2024041931: Denial of service in Envoy	Medium	Patched	19.04.2024
SB2024040530: Denial of service in Envoy	Medium	Patched	05.04.2024
SB2024040529: Remote denial of service in Envoy	Medium	Patched	05.04.2024
SB2024021205: Multiple vulnerabilities in Envoy	High	Patched	12.02.2024
SB2023101023: Denial of service in Envoy	High	Patched Exploited	10.10.2023
SB2023072633: Multiple vulnerabilities in Envoy	High	Patched	26.07.2023

Showing elements 1 - 20 out of 31