Injection Vulnerability in Envoy up to 1.33.0
CVE-2026-6994

5.3MEDIUM

Key Information:

Vendor

Envoy

Status
Envoy
Vendor
CVE Published:
25 April 2026

What is CVE-2026-6994?

A vulnerability exists in Envoy versions up to 1.33.0, specifically within the Query Parameter Handler's params.add function in the header_mutation component. This flaw allows attackers to manipulate input parameters, leading to potential injection attacks. Exploitation can be performed remotely, making it imperative for users to apply the recommended patch (f8f4f1e02fdc64ecd4acf2d903208dd7285ad3a4) to mitigate risks associated with this vulnerability.

Affected Version(s)

Envoy 1.0

Envoy 1.1

Envoy 1.2

References

https://vuldb.com/vuln/359546
vdb-entrytechnical-description
https://vuldb.com/vuln/359546/cti
signaturepermissions-required
https://vuldb.com/submit/797241
third-party-advisory

CVSS V4

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

lukefr09 (VulDB User)
.