Envoy is vulnerable to access control bypass attacks. This is because it does not normalize HTTP URL paths. A remote attacker could craft a relative path and could interpret the non-normalized path, that provide an attacker to access beyond the scope provided by the access control policy.
CPE | Name | Operator | Version |
---|---|---|---|
servicemesh-proxy | eq | 0.6.0__1.el7 | |
servicemesh-proxy | eq | 0.7.0__1.el7 |