CVE-2023-35943

Summary

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, the CORS filter will segfault and crash Envoy when the origin header is removed and deleted between decodeHeadersand encodeHeaders. Versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12 have a fix for this issue. As a workaround, do not remove the origin header in the Envoy configuration.

Affected Software

VendorProductVersion RangeStatus
envoyproxyenvoy>= 1.26.0, < 1.26.4affected
envoyproxyenvoy>= 1.25.0, < 1.25.9affected
envoyproxyenvoy>= 1.24.0, < 1.24.10affected
envoyproxyenvoy< 1.23.12affected

Weaknesses

  • CWE-416: CWE-416: Use After Free

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

References