CVE-2026-6994

CVSS v2.0

6.5

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Envoy versions prior to 1.33.0

Description A weakness in the Query Parameter Handler component allows for injection. The issue resides in the params.add() function within the source/extensions/filters/http/header mutation/header mutation.cc file, which can be exploited remotely.

Recommendations Install the patch f8f4f1e02fdc64ecd4acf2d903208dd7285ad3a4. As a temporary workaround, restrict the use of the params.add() function in the header mutation filter.

Fix

Improper Neutralization

Special Elements Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-707CWE-74

Related Identifiers

CVE-2026-6994

Affected Products

Envoy

CVE-2026-6994

Weakness Enumeration

Related Identifiers

Affected Products

References · 8