Vulnerability Description
Envoy before 1.16.1 logs an incorrect downstream address because it considers only the directly connected peer, not the information in the proxy protocol header. This affects situations with tcp-proxy as the network filter (not HTTP filters).
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Envoyproxy | Envoy | < 1.16.1 |
References
- https://github.com/envoyproxy/envoy/compare/v1.16.0...v1.16.1PatchThird Party Advisory
- https://github.com/envoyproxy/envoy/issues/14087PatchThird Party Advisory
- https://github.com/envoyproxy/envoy/pull/14131PatchThird Party Advisory
- https://github.com/envoyproxy/envoy/compare/v1.16.0...v1.16.1PatchThird Party Advisory
- https://github.com/envoyproxy/envoy/issues/14087PatchThird Party Advisory
- https://github.com/envoyproxy/envoy/pull/14131PatchThird Party Advisory
FAQ
What is CVE-2020-35470?
CVE-2020-35470 is a vulnerability with a CVSS score of 8.8 (HIGH). Envoy before 1.16.1 logs an incorrect downstream address because it considers only the directly connected peer, not the information in the proxy protocol header. This affects situations with tcp-proxy...
How severe is CVE-2020-35470?
CVE-2020-35470 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-35470?
Check the references section above for vendor advisories and patch information. Affected products include: Envoyproxy Envoy.