Bartosz Chwila

**Name of the Vulnerable Software and Affected Versions** Envoy versions prior to 1.34.1 Envoy versions prior to 1.33.3 Envoy versions prior to 1.32.6 Envoy versions prior to 1.31.8 **Description** The issue arises from Envoy's URI template matcher incorrectly excluding the `*` character from a set of valid characters in the URI path. This can lead to a bypass of Role-Based Access Control (RBAC) rules when configured using the `uri template` permissions. **Recommendations** For versions prior to 1.34.1, update to version 1.34.1 or later. For versions prior to 1.33.3, update to version 1.33.3 or later. For versions prior to 1.32.6, update to version 1.32.6 or later. For versions prior to 1.31.8, update to version 1.31.8 or later. As a temporary workaround, configure additional RBAC permissions using `url path` with `safe regex` expression.