CVE-2026-47204 | envoyproxy envoy up to 1.35.12/1.36.8/1.37.4/1.38.2 Connect Protocol null pointer dereference (GHSA-3jxh-8p6x-7pf6)

SecurityVulns

A vulnerability classified as problematic was found in envoyproxy envoy up to 1.35.12/1.36.8/1.37.4/1.38.2. This affects an unknown part of the component Connect Protocol. Executing a manipulation can lead to null pointer dereference.

This vulnerability is tracked as CVE-2026-47204. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More