Description
Envoy before 1.16.1 logs an incorrect downstream address because it considers only the directly connected peer, not the information in the proxy protocol header. This affects situations with tcp-proxy as the network filter (not HTTP filters).
Remediation
References
Related Vulnerabilities
WordPress Plugin Tagregator Cross-Site Scripting (0.6)
Moodle Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-6970)
WordPress Plugin Freetobook review widget Unspecified Vulnerability (1.0)
MySQL CVE-2013-5793 Vulnerability (CVE-2013-5793)
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2022-28129)