VDB
BIT-envoy-2025-64527
BIT-envoy-2025-64527
PUBLISHED
CVSS 6.5 MEDIUM
Envoy crashes when JWT authentication is configured with the remote JWKS fetching
Risk Scores
CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | envoy | 0, 1.34.0, 1.35.0 |
Timeline
- Dec 6, 2025 CVE Published
- Dec 9, 2025 CVE Updated