CVE-2022-3294Improper Input Validation in Kubernetes Kubernetes

CWE-20Improper Input ValidationCWE-288Authentication Bypass Using an Alternate Path or Channel9 documents7 sources
Severity
8.8HIGHNVD
CNA6.6
EPSS
0.5%
top 33.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
KubernetesGithub.com Kubernetes KubernetesK8s.io Kubernetes
Timeline
PublishedMar 1
Latest updateAug 20

Description

Users may have access to secure endpoints in the control plane network. Kubernetes clusters are only affected if an untrusted user can modify Node objects and send proxy requests to them. Kubernetes supports node proxying, which allows clients of kube-apiserver to access endpoints of a Kubelet to establish connections to Pods, retrieve container logs, and more. While Kubernetes already validates the proxying address for Nodes, a bug in kube-apiserver made it possible to bypass this validation. B

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages5 packages

Gok8s.io/kubernetes1.22.01.22.16+3
NVDkubernetes/kubernetes1.23.01.23.14+3
Gogithub.com/kubernetes_kubernetes1.25.01.25.4+3
Debiankubernetes/kubernetes< 1.20.5+really1.20.2-1+3
CVEListV5kubernetes/kubernetesunspecifiedv1.25.3+3

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

5
OSV
Kubernetes vulnerable to validation bypass in k8s.io/kubernetes2024-08-20
OSV
CVE-2022-3294: Users may have access to secure endpoints in the control plane network2023-03-01
OSV
Kubernetes vulnerable to validation bypass2023-03-01
GHSA
Kubernetes vulnerable to validation bypass2023-03-01
CVEList
Node address isn't always verified when proxying2023-03-01

📋Vendor Advisories

3
Microsoft
Node address isn't always verified when proxying2023-03-14
Red Hat
kubernetes: node address isn't always verified when proxying2022-11-10
Debian
CVE-2022-3294: kubernetes - Users may have access to secure endpoints in the control plane network. Kubernet...2022
CVE-2022-3294 — Improper Input Validation | cvebase