Vulnerability in N/a
CVE-2019-15226
Upon receiving each incoming request header data, Envoy will iterate over existing request headers to verify that the total size of the headers stays below a maximum limit. The implementation in versions 1.10.0 through 1.11.1 for HTTP/1.x…
EPSS: 0.654 (99.2th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- github.com/envoyproxy/envoy/commits/master (x_refsource_MISC)
- github.com/envoyproxy/envoy/commit/afc39bea36fd436e54262f150c009e8d72db5014 (x_refsource_MISC)
- github.com/envoyproxy/envoy/issues/8520 (x_refsource_MISC)