Published: 01/07/2020 Updated: 09/07/2020

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Envoy version 1.14.2, 1.13.2, 1.12.4 or earlier may consume excessive amounts of memory when proxying HTTP/2 requests or responses with many small (i.e. 1 byte) data frames.

Vulnerable Product	Search on Vulmon	Subscribe to Product
envoyproxy envoy
envoyproxy envoy 1.13.2
envoyproxy envoy 1.14.2

Synopsis Important: Red Hat OpenShift Service Mesh 11 servicemesh-proxy security update Type/Severity Security Advisory: Important Topic An update for servicemesh-proxy is now available for OpenShift Service Mesh 11Red Hat Product Security has rated this update as having a security impact of Important A ...

Synopsis Important: Red Hat OpenShift Service Mesh 10 servicemesh-proxy security update Type/Severity Security Advisory: Important Topic An update for servicemesh-proxy is now available for OpenShift Service Mesh 10Red Hat Product Security has rated this update as having a security impact of Important A ...

CWE-400 https://github.com/envoyproxy/envoy-setec/issues/80 https://github.com/envoyproxy/envoy/security/advisories/GHSA-pc38-4q6c-85p6 https://access.redhat.com/errata/RHSA-2020:2798 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-12603

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect