Envoy before 1.16.1 logs an incorrect downstream address because it considers only the directly connected peer, not the information in the proxy protocol header. This affects situations with tcp-proxy as the network filter (not HTTP filters).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-12-15T00:48:35
Updated: 2024-08-04T17:02:08.057Z
Reserved: 2020-12-15T00:00:00
Link: CVE-2020-35470
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-12-15T01:15:13.807
Modified: 2020-12-16T17:22:20.037
Link: CVE-2020-35470
Redhat