CVE-2022-31080

KubeEdge Websocket Client in package Viaduct: DoS from large response message

Severity Score

6.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge. Prior to versions 1.11.1, 1.10.2, and 1.9.4, a large response received by the viaduct WSClient can cause a DoS from memory exhaustion. The entire body of the response is being read into memory which could allow an attacker to send a request that returns a response with a large body. The consequence of the exhaustion is that the process which invokes a WSClient will be in a denial of service. The software is affected If users who are authenticated to the edge side connect to `cloudhub` from the edge side through WebSocket protocol. This bug has been fixed in Kubeedge 1.11.1, 1.10.2, and 1.9.4. There are currently no known workarounds.

KubeEdge es un sistema de código abierto para extender las capacidades de orquestación de aplicaciones nativas en contenedores a los hosts en Edge. En versiones anteriores a 1.11.1, 1.10.2 y 1.9.4, una respuesta grande recibida por el WSClient de viaducto puede causar un DoS por agotamiento de memoria. Todo el cuerpo de la respuesta esta siendo leído en la memoria, lo que podría permitir a un atacante enviar una petición que devuelva una respuesta con un cuerpo grande. La consecuencia del agotamiento es que el proceso que invoca un WSClient estará en una denegación de servicio. El software está afectado si los usuarios que están autenticados en el lado del borde son conectados a "cloudhub" desde el lado del borde mediante el protocolo WebSocket. Este error ha sido corregido en Kubeedge versiones 1.11.1, 1.10.2 y 1.9.4. Actualmente no se presentan mitigaciones adicionales conocidas

*Credits: N/A

CVSS Scores

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

High

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

Single

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2022-05-18 CVE Reserved
2022-07-11 CVE Published
2024-02-01 EPSS Updated
2024-08-03 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-400: Uncontrolled Resource Consumption
CWE-770: Allocation of Resources Without Limits or Throttling

CAPEC

References (1)

URL	Tag	Source
https://github.com/kubeedge/kubeedge/security/advisories/GHSA-6wvc-6pww-qr4r	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linuxfoundation Search vendor "Linuxfoundation"		Kubeedge Search vendor "Linuxfoundation" for product "Kubeedge"				< 1.9.4 Search vendor "Linuxfoundation" for product "Kubeedge" and version " < 1.9.4"		-		Affected
Linuxfoundation Search vendor "Linuxfoundation"		Kubeedge Search vendor "Linuxfoundation" for product "Kubeedge"				>= 1.10.0 < 1.10.2 Search vendor "Linuxfoundation" for product "Kubeedge" and version " >= 1.10.0 < 1.10.2"		-		Affected
Linuxfoundation Search vendor "Linuxfoundation"		Kubeedge Search vendor "Linuxfoundation" for product "Kubeedge"				>= 1.11.0 < 1.11.1 Search vendor "Linuxfoundation" for product "Kubeedge" and version " >= 1.11.0 < 1.11.1"		-		Affected