CVE-2022-29224
Last modified
CVE-2022-29224 is a medium-severity vulnerability rated 5.9/10 on the CVSS scale. Envoy is a cloud-native high-performance proxy. Versions of envoy prior to 1.22.1 are subject to a segmentation fault in the GrpcHealthCheckerImpl. EPSS estimates a 0.94% chance of exploitation in the next 30 days.
Description
Envoy is a cloud-native high-performance proxy. Versions of envoy prior to 1.22.1 are subject to a segmentation fault in the GrpcHealthCheckerImpl. Envoy can perform various types of upstream health checking. One of them uses gRPC. Envoy also has a feature which can “hold” (prevent removal) upstream hosts obtained via service discovery until configured active health checking fails. If an attacker controls an upstream host and also controls service discovery of that host (via DNS, the EDS API, etc.), an attacker can crash Envoy by forcing removal of the host from service discovery, and then failing the gRPC health check request. This will crash Envoy via a null pointer dereference. Users are advised to upgrade to resolve this vulnerability. Users unable to upgrade may disable gRPC health checking and/or replace it with a different health checking type as a mitigation.
Metrics
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Envoyproxy | Envoy | < 1.22.1 |
References
- https://github.com/envoyproxy/envoy/security/advisories/GHSA-m4j9-86g3-8f49Third Party Advisory
- https://github.com/envoyproxy/envoy/security/advisories/GHSA-m4j9-86g3-8f49Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2022-29224?
How severe is CVE-2022-29224?
How do I fix CVE-2022-29224?
Are you affected by CVE-2022-29224?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST