CVE-2022-21655
Incorrect handling of internal redirects results in crash in Envoy
In short
Envoy proxy crashes when it tries to redirect traffic internally to a route that has direct response or redirect settings. This causes the service to stop working, disrupting traffic for users.
Technical detail
Internal redirect handling in Envoy's common router triggers a segmentation fault when the selected route is configured with direct response or redirect actions, resulting in process crash and denial of service. Exploitation requires the attacker to craft a request that triggers an internal redirect to a misconfigured route on the same listener.
Summary generated and translated by AI from the official description.
Envoy is an open source edge and service proxy, designed for cloud-native applications. The envoy common router will segfault if an internal redirect selects a route configured with direct response or redirect actions. This will result in a denial of service. As a workaround turn off internal redirects if direct response entries are configured on the same listener.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected products
envoyproxy · envoyWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →