PT-2025-48980 · Envoy · Envoy
Published
2025-12-03
·
Updated
2025-12-06
·
CVE-2025-66220
CVSS v3.1
7.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Envoy versions 1.33.12 through 1.36.2
Description
Envoy’s mTLS certificate matcher for
match typed subject alt names may incorrectly treat certificates containing an embedded null byte (0) inside an OTHERNAME SAN value as valid matches. This can lead to unexpected behavior in mutual TLS authentication.Recommendations
Update to a version later than 1.36.2.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Envoy