- Description
- Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions envoy does not properly handle http 1.1 non-101 1xx responses. This can lead to downstream failures in networked devices. This issue has been addressed in versions 1.31.5 and 1.32.3. Users are advised to upgrade. There are no known workarounds for this issue.
- Source
- security-advisories@github.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 7.1
- Impact score
- 4.2
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
- Severity
- HIGH
- security-advisories@github.com
- CWE-670
- Hype score
- Not currently trending
CVE-2024-53271 HTTP 1.1 Handling Flaw in Envoy Causes Network Failures Envoy is a fast proxy for cloud services. Some versions have a problem. They don't manage HTTP 1.1 non-101 1xx responses well. This can cause... https://t.co/G9YBlaZ2xF
@VulmonFeeds
19 Dec 2024
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-53271 Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions envoy does not properly handle http 1.1 non-101 1xx responses. This can lead… https://t.co/d4L9epOEq3
@CVEnew
18 Dec 2024
212 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes