Is CVE-2025-25294 actively exploited?

CVE-2025-25294 has no public evidence of in-the-wild exploitation as of 2025-09-04.

What is the CVSS score for CVE-2025-25294?

CVE-2025-25294 has a CVSS score of 5.3 (MEDIUM severity). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N.

How do I patch CVE-2025-25294?

Patch guidance is available from envoyproxy security advisories. CVEDatabase generates AI-assisted remediation guidance on demand for CVE-2025-25294.

CVE-2025-25294 - remediation guidance & executive summary

Q: Which products are affected by CVE-2025-25294?

2 products: envoyproxy gateway, envoyproxy gateway.

Description

Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based application gateway. In all Envoy Gateway versions prior to 1.2.7 and 1.3.1 a default Envoy Proxy access log configuration is used. This format is vulnerable to log injection attacks. If the attacker uses a specially crafted user-agent which performs json injection, then he could add and overwrite fields to the access log. This vulnerability is fixed in 1.3.1 and 1.2.7. One can overwrite the old text based default format with JSON formatter by modifying the "EnvoyProxy.spec.telemetry.accessLog" setting.

CVSS Metrics

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Attack Vector: network
Complexity: low
Privileges: none
User Action: none
Scope: unchanged
Confidentiality: none
Integrity: low
Availability: none
Weaknesses: CWE-117

Metadata

Primary Vendor: ENVOYPROXY
Published: 3/6/2025
Last Modified: 9/4/2025
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

envoyproxy : gatewayenvoyproxy : gateway

Remediation Guidance

Executive Summary

Cite this page

CVE-2025-25294. CVEDatabase.com. Retrieved 1 May 2026. https://cvedatabase.com/cve/CVE-2025-25294

View on NIST NVD

CVE-2025-25294 vulnerability