Is CVE-2023-35941 actively exploited?

CVE-2023-35941 has no public evidence of in-the-wild exploitation as of 2024-11-21.

What is the CVSS score for CVE-2023-35941?

CVE-2023-35941 has a CVSS score of 8.6 (HIGH severity). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L.

How do I patch CVE-2023-35941?

Patch guidance is available from envoyproxy security advisories. CVEDatabase generates AI-assisted remediation guidance on demand for CVE-2023-35941.

Fix CVE-2023-35941 - HIGH envoyproxy envoy

Q: Which products are affected by CVE-2023-35941?

4 products: envoyproxy envoy, envoyproxy envoy, envoyproxy envoy, envoyproxy envoy.

Description

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, a malicious client is able to construct credentials with permanent validity in some specific scenarios. This is caused by the some rare scenarios in which HMAC payload can be always valid in OAuth2 filter's check. Versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12 have a fix for this issue. As a workaround, avoid wildcards/prefix domain wildcards in the host's domain configuration.

CVSS Metrics

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
Attack Vector: network
Complexity: low
Privileges: none
User Action: none
Scope: unchanged
Confidentiality: high
Integrity: low
Availability: low
Weaknesses: CWE-116

Metadata

Primary Vendor: ENVOYPROXY
Published: 7/25/2023
Last Modified: 11/21/2024
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

envoyproxy : envoyenvoyproxy : envoyenvoyproxy : envoyenvoyproxy : envoy

Remediation Guidance

Executive Summary

Cite this page

CVE-2023-35941. CVEDatabase.com. Retrieved 1 May 2026. https://cvedatabase.com/cve/CVE-2023-35941

View on NIST NVD

CVE-2023-35941 vulnerability