Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2022-23606
HistoryFeb 23, 2022 - 2:36 a.m.

CVE-2022-23606

2022-02-2302:36:52
redhat.com
access.redhat.com
29
cve-2022-23606
cluster discovery service
stack exhaustion

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

32.8%

JSON

A flaw was found in envoy. When a cluster is deleted via the Cluster Discovery Service, a stack exhaustion may occur.

Related

osv 2
prion 1
veracode 1
cnvd 1
nvd 1
cvelist 1
cve 1
redhat 2
nessus 2
osv
osv
BIT-envoy-2022-23606
2024-03-06 10:55:43
CVE-2022-23606
2022-02-22 23:15:11
prion
prion
Design/Logic Flaw
2022-02-22 23:15:00
veracode
veracode
Denial Of Service (DoS)
2022-06-02 20:46:58
cnvd
cnvd
Envoy has an unspecified vulnerability (CNVD-2022-16288)
2022-02-24 00:00:00
nvd
nvd
CVE-2022-23606
2022-02-22 23:15:11
cvelist
cvelist
CVE-2022-23606 Crash when a cluster is deleted in Envoy
2022-02-22 22:20:13
cve
cve
CVE-2022-23606
2022-02-22 23:15:11
redhat
redhat
(RHSA-2022:1275) Important: Red Hat OpenShift Service Mesh 2.1.2 security update
2022-04-07 17:30:35
(RHSA-2022:1276) Important: Red Hat OpenShift Service Mesh 2.0.9 security update
2022-04-07 17:26:44
nessus
nessus
RHEL 8 : Red Hat OpenShift Service Mesh 2.1.2 (RHSA-2022:1275)
2022-04-08 00:00:00
RHEL 8 : Red Hat OpenShift Service Mesh 2.0.9 (RHSA-2022:1276)
2022-04-08 00:00:00

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

32.8%

JSON
Related for RH:CVE-2022-23606
osv2prion1veracode1cnvd1nvd1cvelist1cve1redhat2nessus2