CVE-2022-3294

unknown

Published 2023-03-01 · Modified 2026-03-03

CVSS v3

—

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2

—

VIR risk

—

Description

Users may have access to secure endpoints in the control plane network. Kubernetes clusters are only affected if an untrusted user can modify Node objects and send proxy requests to them. Kubernetes supports node proxying, which allows clients of kube-apiserver to access endpoints of a Kubelet to establish connections to Pods, retrieve container logs, and more. While Kubernetes already validates the proxying address for Nodes, a bug in kube-apiserver made it possible to bypass this validation. Bypassing this validation could allow authenticated requests destined for Nodes to to the API server's private network.

Predictions

Exploit likelihood

30%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2022-3294

vendor Authored 2026-05-27

Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2022-3294.html

OS impact

OS	Version	Status	Fixed in
sles		affected
debian	bookworm	fixed	`1.20.5+really1.20.2-1`
debian	bullseye	fixed	`1.20.5+really1.20.2-1`
debian	forky	fixed	`1.20.5+really1.20.2-1`
debian	sid	fixed	`1.20.5+really1.20.2-1`
debian	trixie	fixed	`1.20.5+really1.20.2-1`

Package impact

Ecosystem	Package	Vulnerable	Fixed
Go	github.com/kubernetes/kubernetes	`>=1.25.0,<1.25.4`	`1.25.4`
Go	github.com/kubernetes/kubernetes	`>=1.24.0,<1.24.8`	`1.24.8`
Go	github.com/kubernetes/kubernetes	`>=1.23.0,<1.23.14`	`1.23.14`
Go	github.com/kubernetes/kubernetes	`>=1.22.0,<1.22.16`	`1.22.16`
Go	k8s.io/kubernetes	`>=1.25.0,<1.25.4`	`1.22.16`

References

Verify integrity in audit chain (admin only). AS-IS.