Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-23323

Опубликовано: 09 фев. 2024
Источник: debian
EPSS Низкий

Описание

Envoy is a high-performance edge/middle/service proxy. The regex expression is compiled for every request and can result in high CPU usage and increased request latency when multiple routes are configured with such matchers. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
envoyproxyitppackage

EPSS

Процентиль: 1%
0.00011
Низкий

Связанные уязвимости

redhat логотип

CVE-2024-23323

CVSS3: 5.3
redhat
больше 1 года назад

Envoy is a high-performance edge/middle/service proxy. The regex expression is compiled for every request and can result in high CPU usage and increased request latency when multiple routes are configured with such matchers. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.

nvd логотип

CVE-2024-23323

CVSS3: 4.3
nvd
больше 1 года назад

Envoy is a high-performance edge/middle/service proxy. The regex expression is compiled for every request and can result in high CPU usage and increased request latency when multiple routes are configured with such matchers. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.

fstec логотип

BDU:2024-03236

CVSS3: 6.5
fstec
больше 1 года назад

Уязвимость прокси-сервера Envoy, существующая из-за неконтролируемого потребления ресурсов, позволяющая нарушителю вызвать отказ в обслуживании

redos логотип

ROS-20240423-06

CVSS3: 7.5
redos
около 1 года назад

Множественные уязвимости consul

EPSS

Процентиль: 1%
0.00011
Низкий