A vulnerability, which was classified as critical , has been found in envoyproxy envoy up to 1.35.12/1.36.8/1.37.4/1.38.2 . This vulnerability affects unknown code of the component ProcessingResponse Handler . The manipulation leads to use after free. This vulnerability is listed as CVE-2026-47207 . The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.