CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-47207

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.34.0 until 1.35.13, 1.36.9, 1.37.5, and 1.38.3, Envoy crashes if an ext_proc server sends a single gRPC message containing multiple, specially crafted ProcessingResponse messages. This can occur when the first response in the batch causes the gRPC stream object to be destroyed, leading to a use-after-free error when Envoy attempts to process subsequent responses in the same gRPC message. This vulnerability is fixed in 1.35.13, 1.36.9, 1.37.5, and 1.38.3.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 32.9%

CVSS Severity

CVSS v3 Score 6.5

References

Products affected by CVE-2026-47207

Envoyproxy » Envoy » Version: 1.34.0

cpe:2.3:a:envoyproxy:envoy:1.34.0
Envoyproxy » Envoy » Version: 1.34.1

cpe:2.3:a:envoyproxy:envoy:1.34.1
Envoyproxy » Envoy » Version: 1.34.10

cpe:2.3:a:envoyproxy:envoy:1.34.10
Envoyproxy » Envoy » Version: 1.34.11

cpe:2.3:a:envoyproxy:envoy:1.34.11
Envoyproxy » Envoy » Version: 1.34.12

cpe:2.3:a:envoyproxy:envoy:1.34.12
Envoyproxy » Envoy » Version: 1.34.13

cpe:2.3:a:envoyproxy:envoy:1.34.13
Envoyproxy » Envoy » Version: 1.34.14

cpe:2.3:a:envoyproxy:envoy:1.34.14
Envoyproxy » Envoy » Version: 1.34.2

cpe:2.3:a:envoyproxy:envoy:1.34.2
Envoyproxy » Envoy » Version: 1.34.3

cpe:2.3:a:envoyproxy:envoy:1.34.3
Envoyproxy » Envoy » Version: 1.34.4

cpe:2.3:a:envoyproxy:envoy:1.34.4
Envoyproxy » Envoy » Version: 1.34.5

cpe:2.3:a:envoyproxy:envoy:1.34.5
Envoyproxy » Envoy » Version: 1.34.6

cpe:2.3:a:envoyproxy:envoy:1.34.6
Envoyproxy » Envoy » Version: 1.34.7

cpe:2.3:a:envoyproxy:envoy:1.34.7
Envoyproxy » Envoy » Version: 1.34.8

cpe:2.3:a:envoyproxy:envoy:1.34.8
Envoyproxy » Envoy » Version: 1.34.9

cpe:2.3:a:envoyproxy:envoy:1.34.9
Envoyproxy » Envoy » Version: 1.35.0

cpe:2.3:a:envoyproxy:envoy:1.35.0
Envoyproxy » Envoy » Version: 1.35.1

cpe:2.3:a:envoyproxy:envoy:1.35.1
Envoyproxy » Envoy » Version: 1.35.10

cpe:2.3:a:envoyproxy:envoy:1.35.10
Envoyproxy » Envoy » Version: 1.35.11

cpe:2.3:a:envoyproxy:envoy:1.35.11
Envoyproxy » Envoy » Version: 1.35.12

cpe:2.3:a:envoyproxy:envoy:1.35.12
Envoyproxy » Envoy » Version: 1.35.2

cpe:2.3:a:envoyproxy:envoy:1.35.2
Envoyproxy » Envoy » Version: 1.35.3

cpe:2.3:a:envoyproxy:envoy:1.35.3
Envoyproxy » Envoy » Version: 1.35.4

cpe:2.3:a:envoyproxy:envoy:1.35.4
Envoyproxy » Envoy » Version: 1.35.5

cpe:2.3:a:envoyproxy:envoy:1.35.5
Envoyproxy » Envoy » Version: 1.35.6

cpe:2.3:a:envoyproxy:envoy:1.35.6
Envoyproxy » Envoy » Version: 1.35.7

cpe:2.3:a:envoyproxy:envoy:1.35.7
Envoyproxy » Envoy » Version: 1.35.8

cpe:2.3:a:envoyproxy:envoy:1.35.8
Envoyproxy » Envoy » Version: 1.35.9

cpe:2.3:a:envoyproxy:envoy:1.35.9
Envoyproxy » Envoy » Version: 1.36.0

cpe:2.3:a:envoyproxy:envoy:1.36.0
Envoyproxy » Envoy » Version: 1.36.1

cpe:2.3:a:envoyproxy:envoy:1.36.1
Envoyproxy » Envoy » Version: 1.36.2

cpe:2.3:a:envoyproxy:envoy:1.36.2
Envoyproxy » Envoy » Version: 1.36.3

cpe:2.3:a:envoyproxy:envoy:1.36.3
Envoyproxy » Envoy » Version: 1.36.4

cpe:2.3:a:envoyproxy:envoy:1.36.4
Envoyproxy » Envoy » Version: 1.36.5

cpe:2.3:a:envoyproxy:envoy:1.36.5
Envoyproxy » Envoy » Version: 1.36.6

cpe:2.3:a:envoyproxy:envoy:1.36.6
Envoyproxy » Envoy » Version: 1.36.7

cpe:2.3:a:envoyproxy:envoy:1.36.7
Envoyproxy » Envoy » Version: 1.36.8

cpe:2.3:a:envoyproxy:envoy:1.36.8
Envoyproxy » Envoy » Version: 1.38.0

cpe:2.3:a:envoyproxy:envoy:1.38.0
Envoyproxy » Envoy » Version: 1.38.1

cpe:2.3:a:envoyproxy:envoy:1.38.1
Envoyproxy » Envoy » Version: 1.38.2

cpe:2.3:a:envoyproxy:envoy:1.38.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-47207

Products

Pricing

Contact Us