Description

Envoy through 1.15.0 only considers the first value when multiple header values are present for some HTTP headers. Envoy’s setCopy() header map API does not replace all existing occurences of a non-inline header.

Remediation

References

CVE-2020-25017

Related Vulnerabilities

WordPress Plugin Keydatas Arbitrary File Upload (2.5.2)

Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3389)

WordPress Plugin WP-Forum 'forum_feed.php' SQL Injection (1.7.8)

Oracle Application Server CVE-2010-0066 Vulnerability (CVE-2010-0066)

WordPress Plugin Slack-Chat Information Disclosure (1.5.5)

Severity

High

Classification

CVE-2020-25017 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

Tags

Missing Update Known Vulnerabilities