Envoy Crashes Due to JWT Filter Issues
CVE-2024-45809

7.5HIGH

Key Information:

Vendor: Envoy
Status: Envoy
Vendor: CVE Published:; 20 September 2024

What is CVE-2024-45809?

A critical vulnerability in Envoy's JWT filter can lead to an unexpected crash of the service proxy under specific conditions. This occurs when remote JSON Web Keys (JWKs) are being utilized, asynchronous header processing is required, route cache clearing is enabled, and header operations are configured within the JWT filter in a manner that modifies requests to no longer correspond with any defined routes. The root issue arises from a null pointer reference in the upstream code due to the improper ordering of decoding processes and route cache clearance. Versions 1.31.2, 1.30.6, and 1.29.9 have addressed this issue, so immediate upgrades are recommended as no workarounds are available.

References

https://github.com/envoyproxy/envoy/security/advisories/G...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 20, 2024

JSON