CVE-2022-31076

low-risk

Published 2022-06-27

KubeEdge is built upon Kubernetes and extends native containerized application orchestration and device management to hosts at the Edge. In affected versions a malicious message can crash CloudCore by triggering a nil-pointer dereference in the UDS Server. Since the UDS Server only communicates with the CSI Driver on the cloud side, the attack is limited to the local host network. As such, an attacker would already need to be an authenticated user of the Cloud. Additionally it will be affected only when users turn on the unixsocket switch in the config file cloudcore.yaml. This bug has been fixed in Kubeedge 1.11.0, 1.10.1, and 1.9.3. Users should update to these versions to resolve the issue. Users unable to upgrade should sisable the unixsocket switch of CloudHub in the config file cloudcore.yaml.

Do I need to act?

0.09% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 4.2/10 Medium

ADJACENT_NETWORK / HIGH complexity

Affected Products (3)

Kubeedge

Affected Vendors

Linuxfoundation

References (4)

Patch https://github.com/kubeedge/kubeedge/pull/3899/commits/5d60ae9eabd6b6b7afe38758e...

Exploit https://github.com/kubeedge/kubeedge/security/advisories/GHSA-8f4f-v9x5-cg6j

Patch https://github.com/kubeedge/kubeedge/pull/3899/commits/5d60ae9eabd6b6b7afe38758e...

Exploit https://github.com/kubeedge/kubeedge/security/advisories/GHSA-8f4f-v9x5-cg6j

/ 100

low-risk

Severity 11/34 · Low

Exploitability 0/34 · Minimal

Exposure 9/34 · Low