When parsing HTTP/1.x header values, Envoy 1.9.0 and before does not reject embedded zero characters (NUL, ASCII 0x0). This allows remote attackers crafting header values containing embedded NUL characters to potentially bypass header matching rules, gaining access to unauthorized resources.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-04-25T14:55:57

Updated: 2024-08-04T22:01:55.177Z

Reserved: 2019-03-21T00:00:00

Link: CVE-2019-9900

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-04-25T15:29:01.497

Modified: 2024-11-21T04:52:32.300

Link: CVE-2019-9900

cve-icon Redhat

Severity : Important

Publid Date: 2019-04-05T00:00:00Z

Links: CVE-2019-9900 - Bugzilla