{"id":"CVE-2022-29179","summary":"Improper Privilege Management in Cilium","details":"Cilium is open source software for providing and securing network connectivity and loadbalancing between application workloads. Prior to versions 1.9.16, 1.10.11, and 1.11.15, if an attacker is able to perform a container escape of a container running as root on a host where Cilium is installed, the attacker can escalate privileges to cluster admin by using Cilium's Kubernetes service account. The problem has been fixed and the patch is available in versions 1.9.16, 1.10.11, and 1.11.5. There are no known workarounds available.","aliases":["BIT-cilium-2022-29179","BIT-cilium-operator-2022-29179","BIT-cilium-proxy-2022-29179","BIT-hubble-2022-29179","BIT-hubble-relay-2022-29179","BIT-hubble-ui-2022-29179","BIT-hubble-ui-backend-2022-29179","GHSA-fmrf-gvjp-5j5g","GO-2022-0458"],"modified":"2026-04-02T08:03:08.556435Z","published":"2022-05-20T18:30:12Z","related":["CGA-2454-9pv6-223g"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/29xxx/CVE-2022-29179.json","cwe_ids":["CWE-269"],"cna_assigner":"GitHub_M"},"references":[{"type":"WEB","url":"https://github.com/cilium/cilium/releases/tag/v1.10.11"},{"type":"WEB","url":"https://github.com/cilium/cilium/releases/tag/v1.11.5"},{"type":"WEB","url":"https://github.com/cilium/cilium/releases/tag/v1.9.16"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/29xxx/CVE-2022-29179.json"},{"type":"ADVISORY","url":"https://github.com/cilium/cilium/security/advisories/GHSA-fmrf-gvjp-5j5g"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-29179"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/cilium/cilium","events":[{"introduced":"0"},{"fixed":"33d1941c97201b4d7f4b4f6efc2d1c071f5c2cfe"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"1.9.16"}]}},{"type":"GIT","repo":"https://github.com/cilium/cilium","events":[{"introduced":"952d9d33740fc77e1a94d5a52b38d2a313e5c570"},{"fixed":"33ca4b99bc3c33fe7e5347b9e17496c026feef35"}],"database_specific":{"versions":[{"introduced":"1.10.0"},{"fixed":"1.10.11"}]}},{"type":"GIT","repo":"https://github.com/cilium/cilium","events":[{"introduced":"27e0848cc52f13cd697eec7c6cada84667c47879"},{"fixed":"b0d3140aa079b31d2f3889b0f695cf7add393e68"}],"database_specific":{"versions":[{"introduced":"1.11.0"},{"fixed":"1.11.5"}]}}],"versions":["0.10.1","1.0.4","1.0.5","1.0.6","1.0.7","1.1.0","1.1.1","1.1.2","1.1.3","1.1.4","1.1.5","1.1.6","1.10.0","1.10.0-rc0","1.10.0-rc1","1.10.0-rc2","1.10.1","1.10.10","1.10.11","1.10.12","1.10.13","1.10.14","1.10.15","1.10.16","1.10.17","1.10.18","1.10.19","1.10.2","1.10.20","1.10.3","1.10.4","1.10.5","1.10.6","1.10.7","1.10.8","1.10.9","1.11.0","1.11.0-rc0","1.11.0-rc1","1.11.0-rc2","1.11.0-rc3","1.11.1","1.11.10","1.11.11","1.11.12","1.11.13","1.11.14","1.11.15","1.11.16","1.11.17","1.11.18","1.11.19","1.11.2","1.11.20","1.11.3","1.11.4","1.11.5","1.11.6","1.11.7","1.11.8","1.11.9","1.12.0","1.12.0-rc0","1.12.0-rc1","1.12.0-rc2","1.12.0-rc3","1.12.1","1.12.10","1.12.11","1.12.12","1.12.13","1.12.14","1.12.15","1.12.16","1.12.17","1.12.18","1.12.19","1.12.2","1.12.3","1.12.4","1.12.5","1.12.6","1.12.7","1.12.8","1.12.9","1.13.0","1.13.0-rc0","1.13.0-rc1","1.13.0-rc2","1.13.0-rc3","1.13.0-rc4","1.13.0-rc5","1.13.1","1.13.10","1.13.11","1.13.12","1.13.13","1.13.14","1.13.15","1.13.16","1.13.17","1.13.18","1.13.2","1.13.3","1.13.4","1.13.5","1.13.6","1.13.7","1.13.8","1.13.9","1.14.0","1.14.0-pre.2","1.14.0-rc.0","1.14.0-rc.1","1.14.0-snapshot.0","1.14.0-snapshot.1","1.14.0-snapshot.2","1.14.0-snapshot.3","1.14.0-snapshot.4","1.14.1","1.14.10","1.14.11","1.14.12","1.14.13","1.14.14","1.14.15","1.14.16","1.14.17","1.14.18","1.14.19","1.14.2","1.14.3","1.14.4","1.14.5","1.14.6","1.14.7","1.14.8","1.14.9","1.15.0","1.15.0-pre.0","1.15.0-pre.1","1.15.0-pre.2","1.15.0-pre.3","1.15.0-rc.0","1.15.0-rc.1","1.15.1","1.15.10","1.15.11","1.15.12","1.15.13","1.15.14","1.15.15","1.15.16","1.15.17","1.15.18","1.15.19","1.15.2","1.15.3","1.15.4","1.15.5","1.15.6","1.15.7","1.15.8","1.15.9","1.16.0","1.16.0-pre.0","1.16.0-pre.1","1.16.0-pre.2","1.16.0-pre.3","1.16.0-rc.0","1.16.0-rc.1","1.16.0-rc.2","1.16.1","1.16.10","1.16.11","1.16.12","1.16.13","1.16.14","1.16.15","1.16.16","1.16.17","1.16.18","1.16.19","1.16.2","1.16.3","1.16.4","1.16.5","1.16.6","1.16.7","1.16.8","1.16.9","1.17.0","1.17.0-pre.0","1.17.0-pre.1","1.17.0-pre.2","1.17.0-pre.3","1.17.0-rc.0","1.17.0-rc.1","1.17.0-rc.2","1.17.1","1.17.10","1.17.11","1.17.12","1.17.13","1.17.14","1.17.2","1.17.3","1.17.4","1.17.5","1.17.6","1.17.7","1.17.8","1.17.9","1.18.0","1.18.0-pre.0","1.18.0-pre.1","1.18.0-pre.2","1.18.0-pre.3","1.18.0-rc.0","1.18.0-rc.1","1.18.1","1.18.2","1.18.3","1.18.4","1.18.5","1.18.6","1.18.7","1.18.8","1.19.0","1.19.0-pre.0","1.19.0-pre.1","1.19.0-pre.2","1.19.0-pre.3","1.19.0-pre.4","1.19.0-rc.0","1.19.0-rc.1","1.19.1","1.19.2","1.2.0","1.2.0-rc1","1.2.0-rc2","1.2.0-rc3","1.2.1","1.2.2","1.2.3","1.2.4","1.2.5","1.2.6","1.2.7","1.2.8","1.20.0-pre.0","1.20.0-pre.1","1.3.0","1.3.0-rc4","1.3.0-rc5","1.3.1","1.3.2","1.3.3","1.3.4","1.3.5","1.3.6","1.3.7","1.3.8","1.4.0","1.4.0-rc2","1.4.0-rc5","1.4.0-rc6","1.4.0-rc7","1.4.0-rc8","1.4.0-rc9","1.4.1","1.4.10","1.4.2","1.4.3","1.4.4","1.4.5","1.4.6","1.4.7","1.4.8","1.4.9","1.5.0","1.5.0-rc2","1.5.0-rc3","1.5.0-rc4","1.5.0-rc5","1.5.0-rc6","1.5.1","1.5.10","1.5.11","1.5.12","1.5.13","1.5.2","1.5.3","1.5.4","1.5.5","1.5.6","1.5.7","1.5.8","1.5.9","1.6.0","1.6.1","1.6.10","1.6.11","1.6.12","1.6.2","1.6.3","1.6.4","1.6.5","1.6.6","1.6.7","1.6.8","1.6.9","1.7.0","1.7.0-rc3","1.7.0-rc4","1.7.1","1.7.10","1.7.11","1.7.12","1.7.13","1.7.14","1.7.15","1.7.16","1.7.2","1.7.3","1.7.4","1.7.5","1.7.6","1.7.7","1.7.8","1.7.9","1.8.0","1.8.0-rc1","1.8.0-rc2","1.8.0-rc3","1.8.0-rc4","1.8.1","1.8.10","1.8.11","1.8.12","1.8.13","1.8.2","1.8.3","1.8.4","1.8.5","1.8.6","1.8.7","1.8.8","1.8.9","1.9.0","1.9.0-rc0","1.9.0-rc1","1.9.0-rc2","1.9.0-rc3","1.9.1","1.9.10","1.9.11","1.9.12","1.9.13","1.9.14","1.9.15","1.9.2","1.9.3","1.9.4","1.9.5","1.9.6","1.9.7","1.9.8","1.9.9","v0.10.0","v0.11","v0.12.0","v0.13.1","v0.13.10","v0.13.11","v0.13.12","v0.13.13","v0.13.14","v0.13.15","v0.13.16","v0.13.17","v0.13.18","v0.13.19","v0.13.2","v0.13.20","v0.13.21","v0.13.22","v0.13.23","v0.13.24","v0.13.25","v0.13.28","v0.13.3","v0.13.4","v0.13.5","v0.13.6","v0.13.7","v0.13.8","v0.13.9","v0.8.0","v0.8.1","v0.8.2","v0.9.0","v0.9.0-rc1","v1.0.0","v1.0.0-rc1","v1.0.0-rc10","v1.0.0-rc11","v1.0.0-rc13","v1.0.0-rc14","v1.0.0-rc2","v1.0.0-rc4","v1.0.0-rc5","v1.0.0-rc6","v1.0.0-rc7","v1.0.0-rc8","v1.0.0-rc9","v1.0.1","v1.0.2","v1.0.3","v1.0.4","v1.0.5","v1.0.6","v1.0.7","v1.1.0","v1.1.0-rc0","v1.1.0-rc1","v1.1.0-rc2","v1.1.0-rc3","v1.1.0-rc4","v1.1.1","v1.1.2","v1.1.3","v1.1.4","v1.1.5","v1.1.6","v1.10.0","v1.10.0-rc0","v1.10.0-rc1","v1.10.0-rc2","v1.10.1","v1.10.10","v1.10.11","v1.10.12","v1.10.13","v1.10.14","v1.10.15","v1.10.16","v1.10.17","v1.10.18","v1.10.19","v1.10.2","v1.10.20","v1.10.3","v1.10.4","v1.10.5","v1.10.6","v1.10.7","v1.10.8","v1.10.9","v1.11.0","v1.11.0-rc0","v1.11.0-rc1","v1.11.0-rc2","v1.11.0-rc3","v1.11.1","v1.11.10","v1.11.11","v1.11.12","v1.11.13","v1.11.14","v1.11.15","v1.11.16","v1.11.17","v1.11.18","v1.11.19","v1.11.2","v1.11.20","v1.11.3","v1.11.4","v1.11.5","v1.11.6","v1.11.7","v1.11.8","v1.11.9","v1.12.0","v1.12.0-rc0","v1.12.0-rc1","v1.12.0-rc2","v1.12.0-rc3","v1.12.1","v1.12.10","v1.12.11","v1.12.12","v1.12.13","v1.12.14","v1.12.15","v1.12.16","v1.12.17","v1.12.18","v1.12.19","v1.12.2","v1.12.3","v1.12.4","v1.12.5","v1.12.6","v1.12.7","v1.12.8","v1.12.9","v1.13.0","v1.13.0-rc0","v1.13.0-rc1","v1.13.0-rc2","v1.13.0-rc3","v1.13.0-rc4","v1.13.0-rc5","v1.13.1","v1.13.10","v1.13.11","v1.13.12","v1.13.13","v1.13.14","v1.13.15","v1.13.16","v1.13.17","v1.13.18","v1.13.2","v1.13.3","v1.13.4","v1.13.5","v1.13.6","v1.13.7","v1.13.8","v1.13.9","v1.14.0","v1.14.0-pre.2","v1.14.0-rc.0","v1.14.0-rc.1","v1.14.0-snapshot.0","v1.14.0-snapshot.1","v1.14.0-snapshot.2","v1.14.0-snapshot.3","v1.14.0-snapshot.4","v1.14.0-snapshot.5","v1.14.0-snapshot.6","v1.14.1","v1.14.10","v1.14.11","v1.14.12","v1.14.13","v1.14.14","v1.14.15","v1.14.16","v1.14.17","v1.14.18","v1.14.19","v1.14.2","v1.14.3","v1.14.4","v1.14.5","v1.14.6","v1.14.7","v1.14.8","v1.14.9","v1.15.0","v1.15.0-pre.0","v1.15.0-pre.1","v1.15.0-pre.2","v1.15.0-pre.3","v1.15.0-rc.0","v1.15.0-rc.1","v1.15.1","v1.15.10","v1.15.11","v1.15.12","v1.15.13","v1.15.14","v1.15.15","v1.15.16","v1.15.17","v1.15.18","v1.15.19","v1.15.2","v1.15.3","v1.15.4","v1.15.5","v1.15.6","v1.15.7","v1.15.8","v1.15.9","v1.16.0","v1.16.0-pre.0","v1.16.0-pre.1","v1.16.0-pre.2","v1.16.0-pre.3","v1.16.0-rc.0","v1.16.0-rc.1","v1.16.0-rc.2","v1.16.1","v1.16.10","v1.16.11","v1.16.12","v1.16.13","v1.16.14","v1.16.15","v1.16.16","v1.16.17","v1.16.18","v1.16.19","v1.16.2","v1.16.3","v1.16.4","v1.16.5","v1.16.6","v1.16.7","v1.16.8","v1.16.9","v1.17.0","v1.17.0-pre.0","v1.17.0-pre.1","v1.17.0-pre.2","v1.17.0-pre.3","v1.17.0-rc.0","v1.17.0-rc.1","v1.17.0-rc.2","v1.17.1","v1.17.10","v1.17.11","v1.17.12","v1.17.13","v1.17.14","v1.17.2","v1.17.3","v1.17.4","v1.17.5","v1.17.6","v1.17.7","v1.17.8","v1.17.9","v1.18.0","v1.18.0-pre.0","v1.18.0-pre.1","v1.18.0-pre.2","v1.18.0-pre.3","v1.18.0-rc.0","v1.18.0-rc.1","v1.18.1","v1.18.2","v1.18.3","v1.18.4","v1.18.5","v1.18.6","v1.18.7","v1.18.8","v1.19.0","v1.19.0-pre.0","v1.19.0-pre.1","v1.19.0-pre.2","v1.19.0-pre.3","v1.19.0-pre.4","v1.19.0-rc.0","v1.19.0-rc.1","v1.19.1","v1.19.2","v1.2.0","v1.2.0-rc1","v1.2.0-rc2","v1.2.0-rc3","v1.2.1","v1.2.2","v1.2.2-hf1","v1.2.3","v1.2.4","v1.2.4-rc1","v1.2.4-rc3","v1.2.4-rc4","v1.2.5","v1.2.5-rc1","v1.2.5-rc2","v1.2.5-rc3","v1.2.6","v1.2.6-rc1","v1.2.6-rc2","v1.2.6-rc3","v1.2.7","v1.2.8","v1.20.0-pre.0","v1.20.0-pre.1","v1.3.0","v1.3.0-rc1","v1.3.0-rc2","v1.3.0-rc3","v1.3.0-rc4","v1.3.0-rc5","v1.3.1","v1.3.1-rc1","v1.3.2","v1.3.3","v1.3.4","v1.3.5","v1.3.6","v1.3.7","v1.3.8","v1.4.0","v1.4.0-rc1","v1.4.0-rc2","v1.4.0-rc3","v1.4.0-rc4","v1.4.0-rc5","v1.4.0-rc6","v1.4.0-rc7","v1.4.0-rc8","v1.4.0-rc9","v1.4.1","v1.4.10","v1.4.2","v1.4.3","v1.4.4","v1.4.5","v1.4.6","v1.4.7","v1.4.8","v1.4.9","v1.5.0","v1.5.0-rc1","v1.5.0-rc2","v1.5.0-rc3","v1.5.0-rc4","v1.5.0-rc5","v1.5.0-rc6","v1.5.1","v1.5.1-rc1","v1.5.10","v1.5.11","v1.5.12","v1.5.13","v1.5.2","v1.5.2-rc1","v1.5.2-rc2","v1.5.3","v1.5.4","v1.5.5","v1.5.5-rc1","v1.5.6","v1.5.7","v1.5.8","v1.5.9","v1.6.0","v1.6.0-rc1","v1.6.0-rc2","v1.6.0-rc3","v1.6.0-rc4","v1.6.0-rc5","v1.6.0-rc6","v1.6.0-rc7","v1.6.1","v1.6.10","v1.6.11","v1.6.12","v1.6.2","v1.6.3","v1.6.4","v1.6.5","v1.6.6","v1.6.7","v1.6.8","v1.6.9","v1.7.0","v1.7.0-rc1","v1.7.0-rc2","v1.7.0-rc3","v1.7.0-rc4","v1.7.1","v1.7.10","v1.7.11","v1.7.12","v1.7.13","v1.7.14","v1.7.15","v1.7.16","v1.7.2","v1.7.3","v1.7.4","v1.7.5","v1.7.6","v1.7.7","v1.7.8","v1.7.9","v1.8.0","v1.8.0-rc1","v1.8.0-rc2","v1.8.0-rc3","v1.8.0-rc4","v1.8.1","v1.8.10","v1.8.11","v1.8.12","v1.8.13","v1.8.2","v1.8.3","v1.8.4","v1.8.5","v1.8.6","v1.8.7","v1.8.8","v1.8.9","v1.9.0","v1.9.0-rc0","v1.9.0-rc1","v1.9.0-rc2","v1.9.0-rc3","v1.9.1","v1.9.10","v1.9.11","v1.9.12","v1.9.13","v1.9.14","v1.9.15","v1.9.2","v1.9.3","v1.9.4","v1.9.5","v1.9.6","v1.9.7","v1.9.8","v1.9.9"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-29179.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"}]}