Envoy version 1.14.2 Uncontrolled Resource Consumption Vulnerability

Summary

Envoy version 1.14.2 suffers from uncontrolled resource consumption vulnerability

Credit:

The information has been provided by Vendor

The original article can be found at:https://www.envoyproxy.io/docs/envoy/v1.13.1/intro/version_history


Details

Envoy version 1.14.2, 1.13.2, 1.12.4 or earlier may exhaust file descriptors and/or memory when accepting too many connections.

 

Vulnerable Systems:

Envoy version 1.14.2

Envoy version 1.13.2

Envoy version 1.12.4

 

CVE Information:

CVE-2020-8663

 

Disclosure Timeline:
Published Date:7/1/2020

Categories: News