PT-2025-42550 · Envoy · Envoy

Published

2025-10-16

Updated

2025-10-21

CVE-2025-62504

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Envoy versions prior to 1.36.2 Envoy versions prior to 1.35.6 Envoy versions prior to 1.34.10 Envoy versions prior to 1.33.12

Description Envoy, an open source edge and service proxy, has a memory safety issue in the Lua filter. When a Lua script modifies a response body to exceed the per connection buffer limit bytes configuration (defaulting to 1MB) during the response phase, Envoy creates a local reply that overwrites original response headers, leading to dangling references and a potential denial of service.

Recommendations Update to Envoy version 1.36.2 Update to Envoy version 1.35.6 Update to Envoy version 1.34.10 Update to Envoy version 1.33.12

Exploit

Fix

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BIT-ENVOY-2025-62504

CVE-2025-62504

GHSA-GCXR-6VRP-WFF3

OPENSUSE-SU-2025:15655-1

Affected Products

Envoy

PT-2025-42550 · Envoy · Envoy

CVE-2025-62504

Weakness Enumeration

Related Identifiers

Affected Products

References · 12