CVSSS Score 7.3 AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
tls allows re-use when some cert validation settings have changed
Resources available to unauthorized users
Has the problem been patched? What versions should users upgrade to?
Do not modify TLS settings.
https://blog.envoyproxy.io https://github.com/envoyproxy/envoy/releases
Open an issue in Envoy repo Email us at envoy-security
CVSSS Score 7.3 AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
tls allows re-use when some cert validation settings have changed
Impact
Resources available to unauthorized users
Patches
Has the problem been patched? What versions should users upgrade to?
Workarounds
Do not modify TLS settings.
References
https://blog.envoyproxy.io
https://github.com/envoyproxy/envoy/releases
For more information
Open an issue in Envoy repo
Email us at envoy-security