CVE & CISA-KEV Catalog

CVE-2021-32783

HIGH
8.5
CVSS v3
NVD

Description

Contour is a Kubernetes ingress controller using Envoy proxy. In Contour before version 1.17.1 a specially crafted ExternalName type Service may be used to access Envoy's admin interface, which Contour normally prevents from access outside the Envoy container. This can be used to shut down Envoy remotely (a denial of service), or to expose the existence of any Secret that Envoy is using for its configuration, including most notably TLS Keypairs. However, it *cannot* be used to get the *content* of those secrets. Since this attack allows access to the administration interface, a variety of administration options are available, such as shutting down the Envoy or draining traffic. In general, the Envoy admin interface cannot easily be used for making changes to the cluster, in-flight requests, or backend services, but it could be used to shut down or drain Envoy, change traffic routing, or to retrieve secret metadata, as mentioned above. The issue will be addressed in Contour v1.18.0 and a cherry-picked patch release, v1.17.1, has been released to cover users who cannot upgrade at this time. For more details refer to the linked GitHub Security Advisory.

How to fix

Remediation Available
contourNVD
Affected:< 1.17.1Fixed in:1.17.1CVE-2021-32783derived from NVD

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredLow
User InteractionNone
ScopeChanged

Impact

ConfidentialityLow
IntegrityNone
AvailabilityHigh

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:H

Exploit Intelligence

1.15%probability of exploitation in 30 days
63rdpercentile

Moderate risk: more likely to be exploited than 63% of all known CVEs.

References

Third-Party Advisory2
Embed a live status badge for CVE-2021-32783
CVE-2021-32783 severity badge

Markdown

[![CVE-2021-32783](https://tridentstack.com/cve/badge/CVE-2021-32783.svg)](https://tridentstack.com/cve/CVE-2021-32783)

HTML

<a href="https://tridentstack.com/cve/CVE-2021-32783"><img src="https://tridentstack.com/cve/badge/CVE-2021-32783.svg" alt="CVE-2021-32783"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2024-11-21.