CVE-2022-1708

cri-o: memory exhaustion on the node when access to the kube api

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability was found in CRI-O that causes memory or disk space exhaustion on the node for anyone with access to the Kube API. The ExecSync request runs commands in a container and logs the output of the command. This output is then read by CRI-O after command execution, and it is read in a manner where the entire file corresponding to the output of the command is read in. Thus, if the output of the command is large it is possible to exhaust the memory or the disk space of the node when CRI-O reads the output of the command. The highest threat from this vulnerability is system availability.

Se ha encontrado una vulnerabilidad en CRI-O que causa el agotamiento de la memoria o del espacio en disco en el nodo para cualquiera que tenga acceso a la API de Kube. La petición ExecSync ejecuta comandos en un contenedor y registra la salida del comando. Esta salida es leída por CRI-O después de la ejecución del comando, y es leída de manera que el archivo completo correspondiente a la salida del comando es leído. Así, si la salida del comando es grande es posible agotar la memoria o el espacio en disco del nodo cuando CRI-O lee la salida del comando. La mayor amenaza de esta vulnerabilidad es la disponibilidad del sistema

*Credits: N/A

CVSS Scores

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Changed

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2022-05-13 CVE Reserved
2022-06-07 CVE Published
2024-03-26 EPSS Updated
2024-08-03 CVE Updated
2024-08-03 First Exploit
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-400: Uncontrolled Resource Consumption
CWE-770: Allocation of Resources Without Limits or Throttling

CAPEC

References (4)

URL	Tag	Source

URL	Date	SRC
https://github.com/cri-o/cri-o/security/advisories/GHSA-fcm2-6c3h-pg6j	2024-08-03

URL	Date	SRC
https://github.com/cri-o/cri-o/commit/f032cf649ecc7e0c46718bd9e7814bfb317cb544	2023-07-24

URL	Date	SRC
https://bugzilla.redhat.com/show_bug.cgi?id=2085361	2022-11-08
https://access.redhat.com/security/cve/CVE-2022-1708	2022-11-08

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Kubernetes Search vendor "Kubernetes"		Cri-o Search vendor "Kubernetes" for product "Cri-o"				< 1.19.7 Search vendor "Kubernetes" for product "Cri-o" and version " < 1.19.7"		-		Affected
Kubernetes Search vendor "Kubernetes"		Cri-o Search vendor "Kubernetes" for product "Cri-o"				>= 1.20.0 < 1.20.8 Search vendor "Kubernetes" for product "Cri-o" and version " >= 1.20.0 < 1.20.8"		-		Affected
Kubernetes Search vendor "Kubernetes"		Cri-o Search vendor "Kubernetes" for product "Cri-o"				>= 1.21.0 < 1.21.8 Search vendor "Kubernetes" for product "Cri-o" and version " >= 1.21.0 < 1.21.8"		-		Affected
Kubernetes Search vendor "Kubernetes"		Cri-o Search vendor "Kubernetes" for product "Cri-o"				>= 1.22.0 < 1.22.5 Search vendor "Kubernetes" for product "Cri-o" and version " >= 1.22.0 < 1.22.5"		-		Affected
Kubernetes Search vendor "Kubernetes"		Cri-o Search vendor "Kubernetes" for product "Cri-o"				>= 1.23.0 < 1.23.3 Search vendor "Kubernetes" for product "Cri-o" and version " >= 1.23.0 < 1.23.3"		-		Affected
Kubernetes Search vendor "Kubernetes"		Cri-o Search vendor "Kubernetes" for product "Cri-o"				1.24.0 Search vendor "Kubernetes" for product "Cri-o" and version "1.24.0"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				36 Search vendor "Fedoraproject" for product "Fedora" and version "36"		-		Affected
Redhat Search vendor "Redhat"		Openshift Container Platform Search vendor "Redhat" for product "Openshift Container Platform"				3.11 Search vendor "Redhat" for product "Openshift Container Platform" and version "3.11"		-		Affected
Redhat Search vendor "Redhat"		Openshift Container Platform Search vendor "Redhat" for product "Openshift Container Platform"				4.0 Search vendor "Redhat" for product "Openshift Container Platform" and version "4.0"		-		Affected
Redhat Search vendor "Redhat"		Openshift Container Platform Search vendor "Redhat" for product "Openshift Container Platform"				4.9 Search vendor "Redhat" for product "Openshift Container Platform" and version "4.9"		-		Affected
Redhat Search vendor "Redhat"		Openshift Container Platform Search vendor "Redhat" for product "Openshift Container Platform"				4.10 Search vendor "Redhat" for product "Openshift Container Platform" and version "4.10"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux"				7.0 Search vendor "Redhat" for product "Enterprise Linux" and version "7.0"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux"				8.0 Search vendor "Redhat" for product "Enterprise Linux" and version "8.0"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux"				9.0 Search vendor "Redhat" for product "Enterprise Linux" and version "9.0"		-		Affected