CVE-2025-0752

Summary

CVE-2025-0752 is a vulnerability affecting OpenShift Service Mesh versions 2.6.3 and 2.5.6. This issue stems from improper HTTP header sanitization in Envoy, a component of the service mesh. Malicious actors can exploit this flaw to conduct rate-limiter avoidance, access-control bypass, CPU and memory exhaustion, and replay attacks. The vulnerability may allow attackers to bypass access controls, leading to unauthorized access, and consume significant system resources, potentially causing denial-of-service conditions. Additionally, an attacker could replay previously recorded requests, leading to unintended consequences and potential data exposure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.