Envoy · Envoy · CVE-2024-34364
**Name of the Vulnerable Software and Affected Versions**
Envoy (affected versions not specified)
**Description**
The issue is related to an out-of-memory (OOM) vector exposed by Envoy, a cloud-native, open source edge and service proxy. This occurs because the async HTTP client buffers the response with an unbounded buffer, specifically from the mirror response.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.