{"vulnerability": "CVE-2024-2332", "sightings": [{"uuid": "e06853d8-aa08-4432-bd3c-4b5ff9a85fa8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23326", "type": "seen", "source": "https://gist.github.com/ferasdour/504aa49686f8e64564249de44cd5eab2", "content": "", "creation_timestamp": "2025-07-25T01:12:22.000000Z"}, {"uuid": "48468537-04cb-4546-9949-1e3e791b46d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23327", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17748", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-23327\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)\n\ud83d\udd39 Description: Envoy is a high-performance edge/middle/service proxy. When PPv2 is enabled both on a listener and subsequent cluster, the Envoy instance will segfault when attempting to craft the upstream PPv2 header. This occurs when the downstream request has a command type of LOCAL and does not have the protocol block. This issue has been addressed in releases 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.\n\ud83d\udccf Published: 2024-02-09T22:41:54.896Z\n\ud83d\udccf Modified: 2025-06-09T18:42:27.781Z\n\ud83d\udd17 References:\n1. https://github.com/envoyproxy/envoy/security/advisories/GHSA-4h5x-x9vh-m29j\n2. https://github.com/envoyproxy/envoy/commit/63895ea8e3cca9c5d3ab4c5c128ed1369969d54a", "creation_timestamp": "2025-06-09T19:48:10.000000Z"}, {"uuid": "20218f4a-7968-4926-9a44-f00200d46c0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23323", "type": "seen", "source": "https://t.me/arpsyndicate/4895", "content": "#ExploitObserverAlert\n\nCVE-2024-23323\n\nDESCRIPTION: Exploit Observer has 7 entries in 4 file formats related to CVE-2024-23323. Envoy is a high-performance edge/middle/service proxy. The regex expression is compiled for every request and can result in high CPU usage and increased request latency when multiple routes are configured with such matchers. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.\n\nFIRST-EPSS: 0.000460000\nNVD-IS: 1.4\nNVD-ES: 3.9\nARPS-PRIORITY: 0.7583711", "creation_timestamp": "2024-04-26T06:13:39.000000Z"}, {"uuid": "ea7080e6-269d-469d-9cd7-be29bb21997d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23328", "type": "seen", "source": "Telegram/5viUor3PDSvPiqgNCr88mEj2y9oAxMu41yUy-oSPp0S00Q", "content": "", "creation_timestamp": "2024-02-04T02:49:41.000000Z"}, {"uuid": "6c894d5d-2e28-4e9d-9c92-11cf70ebafb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23323", "type": "seen", "source": "https://t.me/ctinow/198667", "content": "https://ift.tt/IAE4Sb6\nCVE-2024-23323 | envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0 resource consumption (GHSA-x278-4w4x-r7ch)", "creation_timestamp": "2024-03-03T10:46:24.000000Z"}, {"uuid": "aa60c144-f125-47e8-8efe-38bb271f5038", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2332", "type": "seen", "source": "https://t.me/ctinow/203973", "content": "https://ift.tt/lLepm4h\nCVE-2024-2332", "creation_timestamp": "2024-03-09T15:26:12.000000Z"}, {"uuid": "e074d297-ffea-4605-ba3d-13eb4cc01a9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2332", "type": "seen", "source": "https://t.me/ctinow/203972", "content": "https://ift.tt/lLepm4h\nCVE-2024-2332", "creation_timestamp": "2024-03-09T15:26:11.000000Z"}, {"uuid": "819b2851-75b5-4c9e-ba58-37b74b3a967c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23324", "type": "seen", "source": "https://t.me/ctinow/198666", "content": "https://ift.tt/fOBYxC5\nCVE-2024-23324 | envoyproxy envoy up to 1.26.6/1.27.2/1.28.0/1.29.0 Downstream ext_authz access control (GHSA-gq3v-vvhj-96j6)", "creation_timestamp": "2024-03-03T10:46:22.000000Z"}, {"uuid": "8d2faa47-e534-41fc-b7a9-1606879fcada", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23328", "type": "seen", "source": "https://t.me/ctinow/196127", "content": "https://ift.tt/ytmBN82\nCVE-2024-23328", "creation_timestamp": "2024-02-29T03:02:55.000000Z"}, {"uuid": "44d36732-cf3f-4a88-b6de-ef10469594ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23328", "type": "seen", "source": "https://t.me/ctinow/196110", "content": "https://ift.tt/ytmBN82\nCVE-2024-23328", "creation_timestamp": "2024-02-29T02:56:23.000000Z"}, {"uuid": "97bb565b-74d4-444b-b8f3-e71f3e548fe2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23329", "type": "seen", "source": "https://t.me/ctinow/170417", "content": "https://ift.tt/FusoTLj\nCVE-2024-23329", "creation_timestamp": "2024-01-19T21:31:55.000000Z"}, {"uuid": "20de0bf8-d799-41fa-896e-77c1e71a1105", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23325", "type": "seen", "source": "https://t.me/ctinow/182358", "content": "https://ift.tt/B34dDqY\nCVE-2024-23325", "creation_timestamp": "2024-02-10T00:21:28.000000Z"}, {"uuid": "f881ee2f-b150-42fb-b844-f2f96a687228", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23324", "type": "seen", "source": "https://t.me/ctinow/182357", "content": "https://ift.tt/3MbAKl8\nCVE-2024-23324", "creation_timestamp": "2024-02-10T00:21:27.000000Z"}, {"uuid": "6681b2ce-d7a4-4995-9f40-393ecb411719", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23323", "type": "seen", "source": "https://t.me/ctinow/182356", "content": "https://ift.tt/T6ryR2d\nCVE-2024-23323", "creation_timestamp": "2024-02-10T00:21:26.000000Z"}, {"uuid": "91cbfb3e-870c-4341-b866-f3f34eb4ad68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23322", "type": "seen", "source": "https://t.me/ctinow/182355", "content": "https://ift.tt/hPebLwJ\nCVE-2024-23322", "creation_timestamp": "2024-02-10T00:21:25.000000Z"}, {"uuid": "5118a409-2723-4bbf-91ad-380477f4420f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23320", "type": "seen", "source": "https://t.me/ctinow/192020", "content": "https://ift.tt/ohcNYK9\nCVE-2024-23320", "creation_timestamp": "2024-02-23T18:32:24.000000Z"}, {"uuid": "fcdba2e2-d1c0-40a6-9da6-b65dad7f5d19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23328", "type": "seen", "source": "https://t.me/ctinow/192510", "content": "https://ift.tt/0UwEocQ\nCVE-2024-23328 | Dataease up to 1.18.14/2.2.x Mysql.java deserialization", "creation_timestamp": "2024-02-24T09:41:16.000000Z"}, {"uuid": "8785a524-717b-4e91-a4cb-f66c8d968ccd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23320", "type": "seen", "source": "https://t.me/ctinow/192006", "content": "https://ift.tt/ohcNYK9\nCVE-2024-23320", "creation_timestamp": "2024-02-23T18:26:46.000000Z"}, {"uuid": "e87274d3-e3aa-49e7-bfed-71f85e85cb16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23322", "type": "seen", "source": "https://t.me/ctinow/185252", "content": "https://ift.tt/IbwzLyc\nCVE-2024-23322", "creation_timestamp": "2024-02-15T06:26:31.000000Z"}, {"uuid": "8b4f6a26-f888-4dc1-98ba-38d2384d08ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23324", "type": "seen", "source": "https://t.me/ctinow/185250", "content": "https://ift.tt/s0xnBFb\nCVE-2024-23324", "creation_timestamp": "2024-02-15T06:26:26.000000Z"}, {"uuid": "a7adf096-31af-4e0d-a8b4-7ffc99fddeb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23325", "type": "seen", "source": "https://t.me/ctinow/185249", "content": "https://ift.tt/bwa9Cie\nCVE-2024-23325", "creation_timestamp": "2024-02-15T06:26:25.000000Z"}, {"uuid": "2a360d84-017e-4dd4-ac24-2a22dc40e20c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23327", "type": "seen", "source": "https://t.me/ctinow/185248", "content": "https://ift.tt/KM9BxY5\nCVE-2024-23327", "creation_timestamp": "2024-02-15T06:26:24.000000Z"}, {"uuid": "a5dd203b-117c-4035-ac21-d43d79491648", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-23329", "type": "seen", "source": "https://t.me/ctinow/174535", "content": "https://ift.tt/qyNvXis\nCVE-2024-23329 Exploit", "creation_timestamp": "2024-01-26T23:16:38.000000Z"}, {"uuid": "57fd12b0-06bd-47d9-8eaf-065d3e613cbe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-23329", "type": "published-proof-of-concept", "source": "https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-hcvp-2cc7-jrwr", "content": "", "creation_timestamp": "2024-01-19T17:55:57.000000Z"}]}