diff --git a/.changelog/21524.txt b/.changelog/21524.txt
new file mode 100644
index 000000000000..5f064e5c946e
--- /dev/null
+++ b/.changelog/21524.txt
@@ -0,0 +1,3 @@
+```release-note:security
+Upgrade envoy module dependencies to version 1.27.7, 1.28.5 and 1.29.7 or higher to resolve [CVE-2024-39305](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39305)
+```
diff --git a/envoyextensions/xdscommon/ENVOY_VERSIONS b/envoyextensions/xdscommon/ENVOY_VERSIONS
index c604e79dc15f..eef7f3100eab 100644
--- a/envoyextensions/xdscommon/ENVOY_VERSIONS
+++ b/envoyextensions/xdscommon/ENVOY_VERSIONS
@@ -8,7 +8,7 @@
 #
 # See https://www.consul.io/docs/connect/proxies/envoy#supported-versions for more information on Consul's Envoy
 # version support.
-1.29.5
-1.28.4
-1.27.6
+1.29.7
+1.28.5
+1.27.7
 1.26.8
\ No newline at end of file