Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Envoy Proxy Vulnerability - CVE-2026-26310 - Vulnerability Database
Envoy Proxy

Envoy Proxy Vulnerability - CVE-2026-26310

High
Reference: CVE-2026-26310
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2026-26310
Title: Envoy Proxy Vulnerability
Overview:

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1 1.36.5 1.35.8 and 1.34.13 calling Utility::getAddressWithPort with a scoped IPv6 addresses causes a crash. This utility is called in the data plane from the original_src filter and the dns filter. This vulnerability is fixed in 1.37.1 1.36.5 1.35.8 and 1.34.13.