Security Advisory

CVE-2019-15225

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-08-19 22:57:58

Last updated 2024-08-05 00:42:01

Assigner mitre

State PUBLISHED

Description

In Envoy through 1.11.1, users may configure a route to match incoming path headers via the libstdc++ regular expression implementation. A remote attacker may send a request with a very long URI to result in a denial of service (memory consumption). This is a related issue to CVE-2019-14993.

← Browse all CVEs View on cve.org ↗