Description
An issue was discovered in Envoy 1.14.0. There is a remotely exploitable crash for HTTP2 Metadata, because an empty METADATA map triggers a Reachable Assertion.
Remediation
References
Related Vulnerabilities
WordPress Plugin Custom Website Data Cross-Site Scripting (1.0)
WordPress Plugin Google Forms Cross-Site Scripting (0.84)
WordPress Plugin SMTP Mail Cross-Site Scripting (1.3.1)
MyBB Cryptographic Issues Vulnerability (CVE-2008-4929)
Oracle Database Server CVE-2018-3110 Vulnerability (CVE-2018-3110)