What is the severity of CVE-2023-27488?

CVE-2023-27488 has a severity rating of 9.8 (critical).

Which versions of Envoy are affected by CVE-2023-27488?

Versions prior to 1.26.0, 1.25.3, 1.24.4, 1.23.6, and 1.22.9 of Envoy are affected by CVE-2023-27488.

How can an attacker exploit CVE-2023-27488?

By configuring the ext_authz filter with failure_mode_allow set to true, an attacker can escalate privileges and bypass authentication checks in Envoy.

Is there a fix available for CVE-2023-27488?

Yes, upgrading Envoy to a version equal to or greater than 1.26.0, 1.25.3, 1.24.4, 1.23.6, or 1.22.9 will fix CVE-2023-27488.

Vulnerability/
CVE-2023-27488

critical

9.8

CWE

27/3/2023

4/4/2023

2/8/2024

CVE-2023-27488: Envoy gRPC client produces invalid protobuf when an HTTP header with non-UTF8 value is received.

Q: What is CVE-2023-27488?

CVE-2023-27488 is a vulnerability in Envoy that allows an attacker to bypass authentication checks when ext_authz filter is configured with failure_mode_allow set to true.

First published: Mon Mar 27 2023(Updated: )

A flaw was found in Envoy which could allow an attacker to bypass authentication checks when ext_authz is used by crafting a malicious http header with a non-UTF8 value.

Credit: security-advisories@github.com

Affected Software	Affected Version	How to fix
Envoyproxy Envoy	<1.22.9
Envoyproxy Envoy	>=1.23.0<1.23.6
Envoyproxy Envoy	>=1.24.0<1.24.4
Envoyproxy Envoy	>=1.25.0<1.25.3

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

RHSA-2023:4623

Frequently Asked Questions

What is CVE-2023-27488?
CVE-2023-27488 is a vulnerability in Envoy that allows an attacker to bypass authentication checks when ext_authz filter is configured with failure_mode_allow set to true.
What is the severity of CVE-2023-27488?
CVE-2023-27488 has a severity rating of 9.8 (critical).
Which versions of Envoy are affected by CVE-2023-27488?
Versions prior to 1.26.0, 1.25.3, 1.24.4, 1.23.6, and 1.22.9 of Envoy are affected by CVE-2023-27488.
How can an attacker exploit CVE-2023-27488?
By configuring the ext_authz filter with failure_mode_allow set to true, an attacker can escalate privileges and bypass authentication checks in Envoy.
Is there a fix available for CVE-2023-27488?
Yes, upgrading Envoy to a version equal to or greater than 1.26.0, 1.25.3, 1.24.4, 1.23.6, or 1.22.9 will fix CVE-2023-27488.

collector/redhat-cve
collector/nvd-index
agent/type
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2023-27488
agent/softwarecombine
agent/first-publish-date
agent/author
agent/references
agent/weakness
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/title
agent/severity
agent/tags
agent/description
agent/event
vendor/envoyproxy
canonical/envoyproxy envoy
version/envoyproxy envoy/1.23.0
version/envoyproxy envoy/1.24.0
version/envoyproxy envoy/1.25.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.