← All stories
● Covered by 1 source Β· 1 reportHigh impact

Tailscale vulnerabilities allowed DoS and unauthorized root access

Aggregated by BrevFeed security Β· updated 15h ago
πŸ”– Save

Tailscale issued a security advisory for two vulnerabilities, one allowing denial of service through malformed HTTP requests and another permitting unauthorized root access via specially crafted SSH usernames. Affected users are advised to upgrade to Tailscale version 1.98.9 or newer to resolve these issues.

Key points

Overview of Vulnerabilities

Tailscale reported two critical vulnerabilities: one affecting Tailscale Serve and Funnel through denial of service (DoS) and another concerning Tailscale SSH, allowing unauthorized root access. Both vulnerabilities require immediate action from users running older versions of Tailscale.

Denial of Service Risk

The DoS vulnerability allows attackers to send malformed HTTP requests to nodes running Tailscale Serve or Funnel, causing a CPU core to spin indefinitely. This issue arises when the request path does not start with '/', resulting in an infinite loop without a timeout.

Unauthorized Root Access

The SSH vulnerability arises from Tailscale's acceptance of usernames with leading dashes. This allowed an attacker to connect using such a username and trigger commands that could access sensitive information. As a result, they could start a root session, violating access control lists.

Mitigation Steps

The vulnerabilities have been patched in Tailscale version 1.98.9 and users running affected versions are strongly encouraged to upgrade immediately. Organizations using Tailscale must ensure their systems are updated to avoid potential exploitation of these vulnerabilities.

Acknowledgements

Tailscale credited Anthropic and Ada Logics for identifying and reporting these vulnerabilities, which helped the company in ensuring their product's security.

✨ This summary was generated by AI from the outlets' reporting listed below. It is not independently verified and may contain errors β€” check the original sources. How BrevFeed works β†’

Primary sources

GitHub tailscale/tailscale GitHub en/get-started GitHub en/organizations CVE CVE-2023-284365.7 MEDIUM CVE CVE-2022-419249.6 CRITICAL CVE CVE-2022-419258.8 HIGH

Reporting from

Tailscale issued a security advisory for two vulnerabilities, one allowing denial of service through malformed HTTP requests and another permitting unauthorized root access via specially crafted SSH usernames. Affected users are advised to upgrade to Tailscale version 1.98.9 or newer to resolve these issues.