CVE-2023-35944

CVSS v3.1 5.3 (Medium)

EPSS 0.07 % (30^th)

Affected Products 1

Advisories 4

Envoy is an open source edge and service proxy designed for cloud-native applications. Envoy allows mixed-case schemes in HTTP/2, however, some internal scheme checks are case-sensitive. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, this can lead to the rejection of requests with mixed-case schemes such as htTp or htTps, or the bypassing of some requests such as https in unencrypted connections. With a fix in versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, Envoy will now lowercase scheme values by default, and change the internal scheme checks that were case-sensitive to be case-insensitive. There are no known workarounds for this issue.

Weaknesses

CWE-20: Improper Input Validation
CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

CVE Status: PUBLISHED
CNA: GitHub, Inc.
Published Date: 2023-07-25 19:15:11
(14 months ago)
Updated Date: 2023-08-02 16:37:33
(13 months ago)

Affected Products

Envoyproxy

Envoy

Configuration #1

	CPE23	From	Up To
Envoyproxy Envoy from 1.23.0 version and prior 1.23.12 version	cpe:2.3:a:envoyproxy:envoy	>= 1.23.0	< 1.23.12
Envoyproxy Envoy from 1.24.0 version and prior 1.24.10 version	cpe:2.3:a:envoyproxy:envoy	>= 1.24.0	< 1.24.10
Envoyproxy Envoy from 1.25.0 version and prior 1.25.9 version	cpe:2.3:a:envoyproxy:envoy	>= 1.25.0	< 1.25.9
Envoyproxy Envoy from 1.26.0 version and prior 1.26.4 version	cpe:2.3:a:envoyproxy:envoy	>= 1.26.0	< 1.26.4