Unrated severityNVD Advisory· Published Dec 15, 2020· Updated Aug 4, 2024
CVE-2020-35470
CVE-2020-35470
Description
Envoy before 1.16.1 logs an incorrect downstream address because it considers only the directly connected peer, not the information in the proxy protocol header. This affects situations with tcp-proxy as the network filter (not HTTP filters).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Envoy/Envoydescription
Patches
Vulnerability mechanics
References
3- github.com/envoyproxy/envoy/compare/v1.16.0...v1.16.1mitrex_refsource_MISC
- github.com/envoyproxy/envoy/issues/14087mitrex_refsource_MISC
- github.com/envoyproxy/envoy/pull/14131mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.