exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2024-23322

больше 1 года назад

Envoy is a high-performance edge/middle/service proxy. Envoy will crash when certain timeouts happen within the same interval. The crash occurs when the following are true: 1. hedge_on_per_try_timeout is enabled, 2. per_try_idle_timeout is enabled (it can only be done in configuration), 3. per-try-timeout is enabled, either through headers or configuration and its value is equal, or within the backoff interval of the per_try_idle_timeout. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.

CVSS3: 5.9

EPSS: Низкий

CVE-2024-23322

больше 1 года назад

Envoy is a high-performance edge/middle/service proxy. Envoy will crash when certain timeouts happen within the same interval. The crash occurs when the following are true: 1. hedge_on_per_try_timeout is enabled, 2. per_try_idle_timeout is enabled (it can only be done in configuration), 3. per-try-timeout is enabled, either through headers or configuration and its value is equal, or within the backoff interval of the per_try_idle_timeout. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.

CVSS3: 7.5

EPSS: Низкий

CVE-2024-23322

больше 1 года назад

Envoy is a high-performance edge/middle/service proxy. Envoy will cras ...

CVSS3: 7.5

EPSS: Низкий

BDU:2024-02905

больше 1 года назад

Уязвимость прокси-сервера Envoy, связанная с использованием памяти после её освобождения, позволяющая нарушителю вызвать аварийное завершение работы приложения

CVSS3: 7.5

EPSS: Низкий

ROS-20240423-06

около 1 года назад

Множественные уязвимости consul

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-23322 Envoy is a high-performance edge/middle/service proxy. Envoy will crash when certain timeouts happen within the same interval. The crash occurs when the following are true: 1. hedge_on_per_try_timeout is enabled, 2. per_try_idle_timeout is enabled (it can only be done in configuration), 3. per-try-timeout is enabled, either through headers or configuration and its value is equal, or within the backoff interval of the per_try_idle_timeout. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.	CVSS3: 5.9	0% Низкий	больше 1 года назад
CVE-2024-23322 Envoy is a high-performance edge/middle/service proxy. Envoy will crash when certain timeouts happen within the same interval. The crash occurs when the following are true: 1. hedge_on_per_try_timeout is enabled, 2. per_try_idle_timeout is enabled (it can only be done in configuration), 3. per-try-timeout is enabled, either through headers or configuration and its value is equal, or within the backoff interval of the per_try_idle_timeout. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.	CVSS3: 7.5	0% Низкий	больше 1 года назад
CVE-2024-23322 Envoy is a high-performance edge/middle/service proxy. Envoy will cras ...	CVSS3: 7.5	0% Низкий	больше 1 года назад
BDU:2024-02905 Уязвимость прокси-сервера Envoy, связанная с использованием памяти после её освобождения, позволяющая нарушителю вызвать аварийное завершение работы приложения	CVSS3: 7.5	0% Низкий	больше 1 года назад
ROS-20240423-06 Множественные уязвимости consul	CVSS3: 7.5		около 1 года назад

Уязвимостей на страницу