VYPR

Gateway

by Envoyproxy

Source repositories

CVEs (3)

  • CVE-2026-22771Jan 12, 2026
    risk 0.00cvss epss 0.01

    Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based application gateway. Prior to 1.5.7 and 1.6.2, EnvoyExtensionPolicy Lua scripts executed by Envoy proxy can be used to leak the proxy's credentials. These credentials can then be…

  • CVE-2025-25294Mar 6, 2025
    risk 0.00cvss epss 0.00

    Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based application gateway. In all Envoy Gateway versions prior to 1.2.7 and 1.3.1 a default Envoy Proxy access log configuration is used. This format is vulnerable to log injection…

  • CVE-2025-24030Jan 23, 2025
    risk 0.00cvss epss 0.00

    Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based application gateway. A user with access to the Kubernetes cluster can use a path traversal attack to execute Envoy Admin interface commands on proxies managed by any version of…