Lucene search

GitHub_MCVE-2022-21701

HistoryJan 19, 2022 - 10:15 p.m.

CVE-2022-21701

2022-01-1922:15:09

CWE-863

GitHub_M

web.nvd.nist.gov

istio

cve-2022-21701

microservices

privilege escalation

kubernetes gateway api

security vulnerability

istio upgrade

istio security

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.9

Confidence

High

EPSS

0.001

Percentile

42.8%

JSON

Istio is an open platform to connect, manage, and secure microservices. In versions 1.12.0 and 1.12.1 Istio is vulnerable to a privilege escalation attack. Users who have CREATE permission for gateways.gateway.networking.k8s.io objects can escalate this privilege to create other resources that they may not have access to, such as Pod. This vulnerability impacts only an Alpha level feature, the Kubernetes Gateway API. This is not the same as the Istio Gateway type (gateways.networking.istio.io), which is not vulnerable. Users are advised to upgrade to resolve this issue. Users unable to upgrade should implement any of the following which will prevent this vulnerability: Remove the gateways.gateway.networking.k8s.io CustomResourceDefinition, set PILOT_ENABLE_GATEWAY_API_DEPLOYMENT_CONTROLLER=true environment variable in Istiod, or remove CREATE permissions for gateways.gateway.networking.k8s.io objects from untrusted users.

Affected configurations

Nvd

Vulners

Node

istioistioMatch1.12.0-

istioistioMatch1.12.0alpha0

istioistioMatch1.12.0alpha1

istioistioMatch1.12.0alpha5

istioistioMatch1.12.0beta0

istioistioMatch1.12.0beta1

istioistioMatch1.12.0beta2

istioistioMatch1.12.0rc1

istioistioMatch1.12.1

VendorProductVersionCPE
istioistio1.12.0cpe:2.3:a:istio:istio:1.12.0:-:*:*:*:*:*:*
istioistio1.12.0cpe:2.3:a:istio:istio:1.12.0:alpha0:*:*:*:*:*:*
istioistio1.12.0cpe:2.3:a:istio:istio:1.12.0:alpha1:*:*:*:*:*:*
istioistio1.12.0cpe:2.3:a:istio:istio:1.12.0:alpha5:*:*:*:*:*:*
istioistio1.12.0cpe:2.3:a:istio:istio:1.12.0:beta0:*:*:*:*:*:*
istioistio1.12.0cpe:2.3:a:istio:istio:1.12.0:beta1:*:*:*:*:*:*
istioistio1.12.0cpe:2.3:a:istio:istio:1.12.0:beta2:*:*:*:*:*:*
istioistio1.12.0cpe:2.3:a:istio:istio:1.12.0:rc1:*:*:*:*:*:*
istioistio1.12.1cpe:2.3:a:istio:istio:1.12.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
istio	istio	1.12.0	cpe:2.3:a:istio:istio:1.12.0:-::::::
istio	istio	1.12.0	cpe:2.3:a:istio:istio:1.12.0:alpha0::::::
istio	istio	1.12.0	cpe:2.3:a:istio:istio:1.12.0:alpha1::::::
istio	istio	1.12.0	cpe:2.3:a:istio:istio:1.12.0:alpha5::::::
istio	istio	1.12.0	cpe:2.3:a:istio:istio:1.12.0:beta0::::::
istio	istio	1.12.0	cpe:2.3:a:istio:istio:1.12.0:beta1::::::
istio	istio	1.12.0	cpe:2.3:a:istio:istio:1.12.0:beta2::::::
istio	istio	1.12.0	cpe:2.3:a:istio:istio:1.12.0:rc1::::::
istio	istio	1.12.1	cpe:2.3:a:istio:istio:1.12.1:::::::*

CNA Affected

[
  {
    "product": "istio",
    "vendor": "istio",
    "versions": [
      {
        "status": "affected",
        "version": ">= 1.12.0, < 1.12.2"
      }
    ]
  }
]

References

github.com/istio/istio/security/advisories/GHSA-mq8f-9446-c28r

istio.io/latest/news/releases/1.12.x/announcing-1.12.2/

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.9

Confidence

High

EPSS

0.001

Percentile

42.8%

JSON

Related for CVE-2022-21701