Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Envoy Wrong DOWNSTREAM_REMOTE_ADDRESS logged Issue - CVE-2020-35470 - Vulnerability Database
Envoy Proxy

Envoy Wrong DOWNSTREAM_REMOTE_ADDRESS logged Issue - CVE-2020-35470

High
Reference: CVE-2020-35470
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-35470
Title: Envoy Wrong DOWNSTREAM_REMOTE_ADDRESS logged Issue
Overview:

Envoy before 1.16.1 logs an incorrect downstream address because it considers only the directly connected peer not the information in the proxy protocol header. This affects situations with tcp-proxy as the network filter (not HTTP filters).