CVE-2026-47692 | envoyproxy envoy up to 1.35.12/1.36.8/1.37.4/1.38.2 PROXY Protocol length length parameter (GHSA-wh36-hm39-mm3r)

SecurityVulns

A vulnerability described as problematic has been identified in envoyproxy envoy up to 1.35.12/1.36.8/1.37.4/1.38.2. Affected by this vulnerability is an unknown functionality of the component PROXY Protocol. Such manipulation of the argument length leads to improper handling of length parameter inconsistency.

This vulnerability is referenced as CVE-2026-47692. The attack needs to be initiated within the local network. No exploit is available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More