CVE-2022-35508 : Security Advisory and Response
Learn about CVE-2022-35508 affecting Proxmox Virtual Environment and Proxmox Mail Gateway. Unprivileged users can exploit SSRF and file disclosure, with potential privilege escalation in PMG.
Proxmox Virtual Environment (PVE) and Proxmox Mail Gateway (PMG) are vulnerable to SSRF and privilege escalation. This CVE allows an attacker with an unprivileged account to perform SSRF attacks and disclose files. Privilege escalation to root@pam account is possible in Proxmox Mail Gateway under certain conditions. The vulnerability has been addressed in pve-http-server 4.1-3.
Understanding CVE-2022-35508
SSRF vulnerability in Proxmox Virtual Environment (PVE) and Proxmox Mail Gateway (PMG) allows attackers to proxy HTTP requests between pve(pmg)proxy and pve(pmg)daemon.
What is CVE-2022-35508?
CVE-2022-35508 is a security vulnerability impacting Proxmox Virtual Environment (PVE) and Proxmox Mail Gateway (PMG). It enables SSRF attacks leading to file disclosure and potential privilege escalation.
The Impact of CVE-2022-35508
The vulnerability allows an attacker with an unprivileged account to exploit SSRF and disclose sensitive files on the server. Additionally, Proxmox Mail Gateway is susceptible to privilege escalation to the root@pam account if specific backup files are accessed.
Technical Details of CVE-2022-35508
The following details outline the technical aspects of CVE-2022-35508.
Vulnerability Description
Proxmox Virtual Environment and Proxmox Mail Gateway are exposed to SSRF attacks due to improper handling of HTTP requests, leading to file disclosure and potential privilege escalation.
Affected Systems and Versions
Vendor and product details are not disclosed. The vulnerability impacts Proxmox Virtual Environment and Proxmox Mail Gateway across all versions.
Exploitation Mechanism
An attacker with an unprivileged account can craft HTTP requests to exploit SSRF, enabling file disclosure and potential privilege escalation in Proxmox Mail Gateway.
Mitigation and Prevention
To safeguard systems from CVE-2022-35508, immediate steps should be taken along with implementing long-term security practices.
Immediate Steps to Take
- Apply the fix provided in pve-http-server 4.1-3 to address the vulnerability.
Long-Term Security Practices
- Regularly update and patch Proxmox Virtual Environment and Proxmox Mail Gateway to stay protected against potential threats.
Patching and Updates
- Stay informed about security advisories and apply patches promptly to mitigate risks.