CVSS: 7.5EPSS: 81%CPEs: 444EXPL: 7CVE-2023-44487 – HTTP/2 Rapid Reset Attack Vulnerability
https://notcve.org/view.php?id=CVE-2023-44487
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. El protocolo HTTP/2 permite una denegación de servicio (consumo de recursos del servidor) porque la cancelación de solicitudes puede restablecer muchas transmisiones rápidamente, como se explotó en la naturaleza entre agosto y octubre de 2023. A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. • https://github.com/imabee101/CVE-2023-44487 https://github.com/studiogangster/CVE-2023-44487 https://github.com/bcdannyboy/CVE-2023-44487 https://github.com/sigridou/CVE-2023-44487- https://github.com/ByteHackr/CVE-2023-44487 https://github.com/ReToCode/golang-CVE-2023-44487 http://www.openwall.com/lists/oss-security/2023/10/13/4 http://www.openwall.com/lists/oss-security/2023/10/13/9 http://www.openwall.com/lists/oss-security/2023/10/18/4 http://www. • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-39278 – Istio vulnerable to denial of service attack due to Golang Regex Library
https://notcve.org/view.php?id=CVE-2022-39278
Istio is an open platform-independent service mesh that provides traffic management, policy enforcement, and telemetry collection. Prior to versions 1.15.2, 1.14.5, and 1.13.9, the Istio control plane, istiod, is vulnerable to a request processing error, allowing a malicious attacker that sends a specially crafted or oversized message which results in the control plane crashing when the Kubernetes validating or mutating webhook service is exposed publicly. This endpoint is served over TLS port 15017, but does not require any authentication from the attacker. For simple installations, Istiod is typically only reachable from within the cluster, limiting the blast radius. However, for some deployments, especially external istiod topologies, this port is exposed over the public internet. • https://github.com/istio/istio/security/advisories/GHSA-86vr-4wcv-mm9w https://istio.io/latest/news/releases/1.13.x/announcing-1.13.9 https://istio.io/latest/news/releases/1.15.x/announcing-1.15.2 https://istio.io/news/releases/1.14.x/announcing-1.14.5 https://access.redhat.com/security/cve/CVE-2022-39278 https://bugzilla.redhat.com/show_bug.cgi?id=2148199 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2022-31045 – Ill-formed headers may lead to unexpected behavior in Istio
https://notcve.org/view.php?id=CVE-2022-31045
Istio is an open platform to connect, manage, and secure microservices. In affected versions ill-formed headers sent to Envoy in certain configurations can lead to unexpected memory access resulting in undefined behavior or crashing. Users are most likely at risk if they have an Istio ingress Gateway exposed to external traffic. This vulnerability has been resolved in versions 1.12.8, 1.13.5, and 1.14.1. Users are advised to upgrade. • https://github.com/istio/istio/security/advisories/GHSA-xwx5-5c9g-x68x https://istio.io/latest/news/security/istio-security-2022-05 https://access.redhat.com/security/cve/CVE-2022-31045 https://bugzilla.redhat.com/show_bug.cgi?id=2088819 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-24726 – Unauthenticated control plane denial of service attack in Istio
https://notcve.org/view.php?id=CVE-2022-24726
Istio is an open platform to connect, manage, and secure microservices. In affected versions the Istio control plane, istiod, is vulnerable to a request processing error, allowing a malicious attacker that sends a specially crafted message which results in the control plane crashing when the validating webhook for a cluster is exposed publicly. This endpoint is served over TLS port 15017, but does not require any authentication from the attacker. For simple installations, Istiod is typically only reachable from within the cluster, limiting the blast radius. However, for some deployments, especially [external istiod](https://istio.io/latest/docs/setup/install/external-controlplane/) topologies, this port is exposed over the public internet. • https://github.com/golang/go/issues/51112 https://github.com/istio/istio/commit/6ca5055a4db6695ef5504eabdfde3799f2ea91fd https://github.com/istio/istio/security/advisories/GHSA-8w5h-qr4r-2h6g https://access.redhat.com/security/cve/CVE-2022-24726 https://bugzilla.redhat.com/show_bug.cgi?id=2061638 • CWE-400: Uncontrolled Resource Consumption CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-23635 – Unauthenticated control plane denial of service attack in Istio
https://notcve.org/view.php?id=CVE-2022-23635
Istio is an open platform to connect, manage, and secure microservices. In affected versions the Istio control plane, `istiod`, is vulnerable to a request processing error, allowing a malicious attacker that sends a specially crafted message which results in the control plane crashing. This endpoint is served over TLS port 15012, but does not require any authentication from the attacker. For simple installations, Istiod is typically only reachable from within the cluster, limiting the blast radius. However, for some deployments, especially [multicluster](https://istio.io/latest/docs/setup/install/multicluster/primary-remote/) topologies, this port is exposed over the public internet. • https://github.com/istio/istio/commit/5f3b5ed958ae75156f8656fe7b3794f78e94db84 https://github.com/istio/istio/security/advisories/GHSA-856q-xv3c-7f2f https://istio.io/latest/news/security/istio-security-2022-003 https://access.redhat.com/security/cve/CVE-2022-23635 https://bugzilla.redhat.com/show_bug.cgi?id=2057277 • CWE-287: Improper Authentication CWE-1284: Improper Validation of Specified Quantity in Input •