Description

Envoy through 1.15.0 only considers the first value when multiple header values are present for some HTTP headers. Envoy’s setCopy() header map API does not replace all existing occurences of a non-inline header.

Remediation

References

CVE-2020-25017

Related Vulnerabilities

WordPress Plugin WP Super Cache Multiple Vulnerabilities (1.4.4)

phpBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-1000419)

MySQL CVE-2019-2798 Vulnerability (CVE-2019-2798)

Oracle JRE CVE-2022-21299 Vulnerability (CVE-2022-21299)

Oracle Database Server CVE-2019-2956 Vulnerability (CVE-2019-2956)

Severity

High

Classification

CVE-2020-25017 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

Tags

Missing Update Known Vulnerabilities