← back
CVE-2021-29258

CVE-2021-29258

EPSS 1.7%
An issue was discovered in Envoy 1.14.0. There is a remotely exploitable crash for HTTP2 Metadata, because an empty METADATA map triggers a Reachable Assertion.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://blog.envoyproxy.iohttps://github.com/envoyproxy/envoy/releases/tag/v1.14.0https://github.com/envoyproxy/envoy/security/advisories/GHSA-xw4q-6pj2-5gfghttps://github.com/envoyproxy/envoy-setec/pull/230