Description
Envoy is a cloud-native, open source edge and service proxy. There is a use-after-free in `HttpConnectionManager` (HCM) with `EnvoyQuicServerStream` that can crash Envoy. An attacker can exploit this vulnerability by sending a request without `FIN`, then a `RESET_STREAM` frame, and then after receiving the response, closing the connection.
Remediation
References
Related Vulnerabilities
Drupal Core 9.0.x Multiple Cross-Site Scripting Vulnerabilities (9.0.0 - 9.0.5)
WordPress Plugin Ivory Search-WordPress Search Cross-Site Scripting (4.5.10)
PHP Other Vulnerability (CVE-2002-0986)
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-6752)
Oracle Database Server CVE-2014-6578 Vulnerability (CVE-2014-6578)