Security Advisory

CVE-2020-35470

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-15 00:48:35

Last updated 2024-08-04 17:02:08

Assigner mitre

State PUBLISHED

Description

Envoy before 1.16.1 logs an incorrect downstream address because it considers only the directly connected peer, not the information in the proxy protocol header. This affects situations with tcp-proxy as the network filter (not HTTP filters).

← Browse all CVEs View on cve.org ↗