---

CVE-2021-32778 - log back

CVE-2021-32778 edited at 25 Aug 2021 10:19:04

Description

- Envoy, as used by Istio before version 1.11.1, contains a remotely exploitable vulnerability where an Envoy client opening and then resetting a large number of HTTP/2 requests could lead to excessive CPU consumption. See CVE-2021-32778 for for information. + Envoy, as used by Istio before version 1.11.1, contains a remotely exploitable vulnerability where an Envoy client opening and then resetting a large number of HTTP/2 requests could lead to excessive CPU consumption.

CVE-2021-32778 edited at 25 Aug 2021 10:17:56
Severity	- Unknown + High
Remote	- Unknown + Remote
Type	- Unknown + Denial of service
Description	+ Envoy, as used by Istio before version 1.11.1, contains a remotely exploitable vulnerability where an Envoy client opening and then resetting a large number of HTTP/2 requests could lead to excessive CPU consumption. See CVE-2021-32778 for for information.
References	+ https://istio.io/latest/news/security/istio-security-2021-008/#cve-2021-32778

CVE-2021-32778 created at 25 Aug 2021 10:15:50
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes