CVE-2025-66220 | envoy up to 1.33.12/1.34.10/1.35.6/1.36.2 match_typed_subject_alt_names OTHERNAME null termination (GHSA-rwjg-c3h2-f57p)

December 4, 2025 Yanac

A vulnerability marked as problematic has been reported in envoy up to 1.33.12/1.34.10/1.35.6/1.36.2. The affected element is the function match_typed_subject_alt_names. This manipulation of the argument OTHERNAME causes improper null termination.

The identification of this vulnerability is CVE-2025-66220. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More