VYPR
Important severity7.5NVD Advisory· Published Jun 26, 2026

envoy: Envoy: Request desynchronization allows security policy bypass via HTTP/3 to HTTP/1 translation

CVE-2026-48743

Description

envoy: Envoy: Request desynchronization allows security policy bypass via HTTP/3 to HTTP/1 translation

Affected products

1

Patches

Vulnerability mechanics

News mentions

0

No linked articles in our index yet.