CVE-2022-23551 (CNNVD-202212-3682)
中文标题:
AAD Pod Identity 安全漏洞
英文标题:
AAD Pod Identity obtaining token with backslash
漏洞描述
中文描述:
Microsoft AAD Pod Identity是美国微软(Microsoft)公司的 将 Azure Active Directory 身份分配给 Kubernetes 应用程序。 AAD Pod Identity 1.8.13之前版本存在安全漏洞,该漏洞源于NMI组件根据正则表达式拦截和验证令牌请求,在请求中使用反斜杠发出的令牌请求将绕过NMI验证并发送到 IMDS,从而允许集群中的pod访问它不应该访问的身份。
英文描述:
aad-pod-identity assigns Azure Active Directory identities to Kubernetes applications and has now been deprecated as of 24 October 2022. The NMI component in AAD Pod Identity intercepts and validates token requests based on regex. In this case, a token request made with backslash in the request (example: `/metadata/identity\oauth2\token/`) would bypass the NMI validation and be sent to IMDS allowing a pod in the cluster to access identities that it shouldn't have access to. This issue has been fixed and has been included in AAD Pod Identity release version 1.8.13. If using the AKS pod-managed identities add-on, no action is required. The clusters should now be running the version 1.8.13 release.
CWE类型:
标签:
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| Azure | aad-pod-identity | < 1.8.13 | - | - |
cpe:2.3:a:azure:aad-pod-identity:<_1.8.13:*:*:*:*:*:*:*
|
| microsoft | azure_ad_pod_identity | * | - | - |
cpe:2.3:a:microsoft:azure_ad_pod_identity:*:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
参考链接
cve.org
cve.org
cve.org
CVSS评分详情
3.1 (cna)
MEDIUMCVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:L/I:H/A:L
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2022-23551 |
2025-11-11 15:21:18 | 2025-11-11 07:37:20 |
| NVD | nvd_CVE-2022-23551 |
2025-11-11 14:58:30 | 2025-11-11 07:45:36 |
| CNNVD | cnnvd_CNNVD-202212-3682 |
2025-11-11 15:11:05 | 2025-11-11 07:57:42 |
版本与语言
安全公告
变更历史
查看详细变更
- vulnerability_type: 未提取 -> 其他
- cnnvd_id: 未提取 -> CNNVD-202212-3682
- data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
查看详细变更
- affected_products_count: 1 -> 2
- data_sources: ['cve'] -> ['cve', 'nvd']