{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53094?format=json","vulnerability_id":"VCID-mrak-7cj6-m7g9","summary":"Envoy is a cloud-native, open source edge and service proxy. When an upstream TLS cluster is used with `auto_sni` enabled, a request containing a `host`/`:authority` header longer than 255 characters triggers an abnormal termination of Envoy process. Envoy does not gracefully handle an error when setting SNI for outbound TLS connection. The error can occur when Envoy attempts to use the `host`/`:authority` header value longer than 255 characters as SNI for outbound TLS connection. SNI length is limited to 255 characters per the standard. Envoy always expects this operation to succeed and abnormally aborts the process when it fails. This vulnerability is fixed in 1.30.1, 1.29.4, 1.28.3, and 1.27.5.","aliases":[{"alias":"CVE-2024-32475"}],"fixed_packages":[],"affected_packages":[],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-32475.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-32475.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-32475","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33803","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-32475"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2276149","reference_id":"2276149","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2276149"},{"reference_url":"https://github.com/envoyproxy/envoy/commit/b47fc6648d7c2dfe0093a601d44cb704b7bad382","reference_id":"b47fc6648d7c2dfe0093a601d44cb704b7bad382","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T19:38:07Z/"}],"url":"https://github.com/envoyproxy/envoy/commit/b47fc6648d7c2dfe0093a601d44cb704b7bad382"},{"reference_url":"https://github.com/envoyproxy/envoy/security/advisories/GHSA-3mh5-6q8v-25wj","reference_id":"GHSA-3mh5-6q8v-25wj","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T19:38:07Z/"}],"url":"https://github.com/envoyproxy/envoy/security/advisories/GHSA-3mh5-6q8v-25wj"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7724","reference_id":"RHSA-2024:7724","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7724"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7725","reference_id":"RHSA-2024:7725","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7725"}],"weaknesses":[{"cwe_id":253,"name":"Incorrect Check of Function Return Value","description":"The product incorrectly checks a return value from a function, which prevents it from detecting errors or exceptional conditions."},{"cwe_id":617,"name":"Reachable Assertion","description":"The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary."},{"cwe_id":1284,"name":"Improper Validation of Specified Quantity in Input","description":"The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties."}],"exploits":[],"severity_range_score":"7.5 - 7.5","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mrak-7cj6-m7g9"}