Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Envoy Admin Interface Exposed through prometheus metrics endpoint
Vulnerability Description
Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based application gateway. A user with access to the Kubernetes cluster can use a path traversal attack to execute Envoy Admin interface commands on proxies managed by any version of Envoy Gateway prior to 1.2.6. The admin interface can be used to terminate the Envoy process and extract the Envoy configuration (possibly containing confidential data). Version 1.2.6 fixes the issue. As a workaround, the `EnvoyProxy` API can be used to apply a bootstrap config patch that restricts access strictly to the prometheus stats endpoint. Find below an example of such a bootstrap patch.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Vulnerability Type
未保护的主要通道
Vulnerability Title
Envoy Gateway 安全漏洞
Vulnerability Description
Envoy Gateway是Envoy Proxy开源的一个将 Envoy 代理作为独立或基于 Kubernetes 的应用程序网关。 Envoy Gateway 1.2.6之前版本存在安全漏洞,该漏洞源于存在路径遍历漏洞,允许用户在由Envoy Gateway管理的代理上执行Envoy管理界面命令。
CVSS Information
N/A
Vulnerability Type
N/A