Synced 16 Jun 2026 15:24 UTC Account

Is Envoy 1.27.7 patched?

Envoy Proxy · cycle 1.27 · end of life · Official site ↗
1.27.740/100End of life

Current stable (1.38.2): 100/100

Minimum safe version1.34.13

1.27.7 has 3 open critical-or-high vulnerabilities. Run 1.34.13 or later to clear them. See what 1.34.13 fixes →

Health score40/100
Open issues17
Exploited now0
Cycle 1.27 EOL2024-07-27
Latest release1.38.2

Summary iPlain-English security status for Envoy 1.27.7, built from its CVEs, active-exploitation data, end-of-life date and latest release.

Envoy 1.27.7 is part of the 1.27 release line. 17 known vulnerabilities affect it. The minimum safe version is 1.34.13 — upgrade to it or later to clear the open critical/high issues. The 1.27 line reached end-of-life on 2024-07-27, so it no longer receives security patches. The latest supported Envoy release is 1.38.2.

Known issues affecting 1.27.7

Exploited first, then by exploitation probability.

CVE-2024-53270 HIGH EPSS 1% → fixed in 1.32.3 CVE-2024-45810 MEDIUM EPSS 1% → fixed in 1.31.2 CVE-2025-64527 MEDIUM EPSS 0% → fixed in 1.36.3 CVE-2025-62409 HIGH EPSS 0% → fixed in 1.35.5 CVE-2026-26310 MEDIUM EPSS 0% → fixed in 1.36.5 CVE-2024-45806 MEDIUM EPSS 0% → fixed in 1.31.2 CVE-2025-62504 MEDIUM EPSS 0% → fixed in 1.36.2 CVE-2025-30157 MEDIUM EPSS 0% → fixed in 1.32.4 CVE-2026-26309 MEDIUM EPSS 0% → fixed in 1.36.5 CVE-2024-45808 MEDIUM EPSS 0% → fixed in 1.31.2 CVE-2026-26311 MEDIUM EPSS 0% → fixed in 1.36.5 CVE-2026-26330 MEDIUM EPSS 0% → fixed in 1.36.5 CVE-2025-55162 MEDIUM EPSS 0% → fixed in 1.34.5 CVE-2026-26308 HIGH EPSS 0% → fixed in 1.36.5 CVE-2025-64763 LOW EPSS 0% → fixed in 1.36.3 CVE-2025-46821 MEDIUM EPSS 0% → fixed in 1.33.3 CVE-2025-66220 MEDIUM EPSS 0% → fixed in 1.36.3

Other Envoy versions

Check another release line of Envoy.

Envoy 1.38.2Envoy 1.37.4Envoy 1.36.8Envoy 1.35.12Envoy 1.34.14Envoy 1.33.14Envoy 1.32.13Envoy 1.31.10Envoy 1.30.11Envoy 1.29.12Envoy 1.28.7Envoy 1.26.8Envoy 1.25.11Envoy 1.24.12Envoy 1.23.12Envoy 1.22.11Envoy 1.21.6Envoy 1.20.7Envoy 1.19.5Envoy 1.18.6Envoy 1.17.4Envoy 1.16.5Envoy 1.15.5Envoy 1.14.7Envoy 1.13.8Envoy 1.12.7Envoy 1.11.2Envoy 1.10.0Envoy 1.9.1Envoy 1.8.0Envoy 1.7.1Envoy 1.6.0Envoy 1.5.0Envoy 1.4.0Envoy 1.3.0Envoy 1.2.0Envoy 1.1.0Envoy 1.0.0

Frequently asked

Is Envoy 1.27.7 patched?

Envoy 1.27.7 is end-of-life and no longer receives security patches. Move to 1.38.2.

What version should I upgrade Envoy 1.27.7 to?

Upgrade Envoy 1.27.7 to at least 1.34.13 to clear its 3 open critical-or-high vulnerabilities.

When does Envoy 1.27 reach end-of-life?

Envoy 1.27 reached end-of-life on 2024-07-27 and no longer receives security patches.

What is the latest version of Envoy?

The latest supported Envoy release is 1.38.2.

Is Envoy 1.27.7 still receiving security updates?

No — Envoy 1.27.7 is on the 1.27 line, which reached end-of-life on 2024-07-27 and no longer receives security updates. Upgrade to 1.38.2 or later to stay supported.

Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against Envoy Proxy's official advisory before you patch or upgrade — Envoy official site ↗