Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2024-30255
HistoryApr 04, 2024 - 8:15 p.m.

CVE-2024-30255

2024-04-0420:15:08
CWE-390
[email protected]
web.nvd.nist.gov
48
envoy
edge proxy
cpu exhaustion
http/2
flood
denial of service
upgrade
downstream connections.

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

5.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%

JSON

Envoy is a cloud-native, open source edge and service proxy. The HTTP/2 protocol stack in Envoy versions prior to 1.29.3, 1.28.2, 1.27.4, and 1.26.8 are vulnerable to CPU exhaustion due to flood of CONTINUATION frames. Envoy’s HTTP/2 codec allows the client to send an unlimited number of CONTINUATION frames even after exceeding Envoy’s header map limits. This allows an attacker to send a sequence of CONTINUATION frames without the END_HEADERS bit set causing CPU utilization, consuming approximately 1 core per 300Mbit/s of traffic and culminating in denial of service through CPU exhaustion. Users should upgrade to version 1.29.3, 1.28.2, 1.27.4, or 1.26.8 to mitigate the effects of the CONTINUATION flood. As a workaround, disable HTTP/2 protocol for downstream connections.

Affected configurations

Vulners
Node
envoyproxyenvoyRange1.29.01.29.3
OR
envoyproxyenvoyRange1.28.01.28.2
OR
envoyproxyenvoyRange1.27.01.27.4
OR
envoyproxyenvoyRange<1.26.8
VendorProductVersionCPE
envoyproxyenvoy*cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*
envoyproxyenvoy*cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*
envoyproxyenvoy*cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*
envoyproxyenvoy*cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*

CNA Affected

[
  {
    "vendor": "envoyproxy",
    "product": "envoy",
    "versions": [
      {
        "version": ">= 1.29.0, < 1.29.3",
        "status": "affected"
      },
      {
        "version": ">= 1.28.0, < 1.28.2",
        "status": "affected"
      },
      {
        "version": ">= 1.27.0, < 1.27.4",
        "status": "affected"
      },
      {
        "version": "< 1.26.8",
        "status": "affected"
      }
    ]
  }
]

Related

osv 1
cvelist 1
veracode 1
redhatcve 1
nvd 1
f5 1
arista 1
cert 1
thn 1
osv
osv
BIT-envoy-2024-30255
2024-04-06 18:17:53
cvelist
cvelist
CVE-2024-30255 HTTP/2: CPU exhaustion due to CONTINUATION frame flood
2024-04-04 19:41:02
veracode
veracode
Denial Of Service (DoS)
2024-04-08 06:22:49
redhatcve
redhatcve
CVE-2024-30255
2024-04-03 19:53:45
nvd
nvd
CVE-2024-30255
2024-04-04 20:15:08
f5
f5
K000139859: Envoy vulnerability CVE-2024-30255
2024-05-31 00:00:00
arista
arista
Security Advisory 0094
2024-04-05 00:00:00
cert
cert
HTTP/2 CONTINUATION frames can be utilized for DoS attacks
2024-04-03 00:00:00
thn
thn
New HTTP/2 Vulnerability Exposes Web Servers to DoS Attacks
2024-04-04 11:15:00

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

5.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%

JSON
Related for CVE-2024-30255
osv1cvelist1veracode1redhatcve1nvd1f51arista1cert1thn1