Количество 3
Количество 3
CVE-2025-66220
Envoy is a high-performance edge/middle/service proxy. In 1.33.12, 1.34.10, 1.35.6, 1.36.2, and earlier, Envoy’s mTLS certificate matcher for match_typed_subject_alt_names may incorrectly treat certificates containing an embedded null byte (\0) inside an OTHERNAME SAN value as valid matches.
CVE-2025-66220
Envoy is a high-performance edge/middle/service proxy. In 1.33.12, 1.3 ...
GHSA-rwjg-c3h2-f57p
Envoy's TLS certificate matcher for `match_typed_subject_alt_names` may incorrectly treat certificates containing an embedded null byte
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-66220 Envoy is a high-performance edge/middle/service proxy. In 1.33.12, 1.34.10, 1.35.6, 1.36.2, and earlier, Envoy’s mTLS certificate matcher for match_typed_subject_alt_names may incorrectly treat certificates containing an embedded null byte (\0) inside an OTHERNAME SAN value as valid matches. | CVSS3: 5 | 0% Низкий | 2 месяца назад |
| CVE-2025-66220 Envoy is a high-performance edge/middle/service proxy. In 1.33.12, 1.3 ... | CVSS3: 5 | 0% Низкий | 2 месяца назад |
| GHSA-rwjg-c3h2-f57p Envoy's TLS certificate matcher for `match_typed_subject_alt_names` may incorrectly treat certificates containing an embedded null byte | CVSS3: 5 | 0% Низкий | 2 месяца назад |
Уязвимостей на страницу