SCA: security update for github.com/envoyproxy/envoy (GHSA-g9vw-6pvx-7gmw)

high Tenable Self-Hosted Container Security Plugin ID 435288

Description

There are packages installed that are affected by a vulnerability referenced in the following CVE:

- Envoy is an open source L7 proxy and communication bus designed for large modern service oriented
architectures. Versions 1.34.0 through 1.34.4 and 1.35.0 contain a use-after-free (UAF) vulnerability in
the DNS cache, causing abnormal process termination. The vulnerability is in Envoy's Dynamic Forward Proxy
implementation, occurring when a completion callback for a DNS resolution triggers new DNS resolutions or
removes existing pending resolutions. This condition may occur when the following conditions are met:
dynamic Forwarding Filter is enabled, the `envoy.reloadable_features.dfp_cluster_resolves_hosts` runtime
flag is enabled, and the Host header is modified between the Dynamic Forwarding Filter and Router filters.
This issue is resolved in versions 1.34.5 and 1.35.1. To work around this issue, set the
envoy.reloadable_features.dfp_cluster_resolves_hosts runtime flag to false. (CVE-2025-54588)

See Also

https://github.com/advisories/GHSA-g9vw-6pvx-7gmw

Plugin Details

Severity: High

ID: 435288

Version: Revision 1.6

Type: Local

Family: SCA Checks

Published: 9/15/2025

Updated: 7/2/2026

Supported Sensors: Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Low

Score: 3

Percentile: 23.69

Vendor

Vendor Severity: High

CVSS v2

Risk Factor: High

Base Score: 7.8

Temporal Score: 5.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS Score Source: CVE-2025-54588

CVSS v3

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 9/15/2025

Vulnerability Publication Date: 9/2/2025

Reference Information

CVE: CVE-2025-54588

cwe: CWE-416