CVE-2022-29188: 
Wolfi vulnerability analysis and mitigation

Smokescreen, an HTTP proxy designed to prevent server-side request forgery (SSRF) attacks, was found to contain a vulnerability identified as CVE-2022-29188. The vulnerability was discovered in versions prior to 0.0.4, where attackers could bypass the deny list feature by surrounding hostnames with square brackets (e.g., [example.com]). This vulnerability specifically impacted the HTTP proxy functionality, while HTTPS requests remained unaffected (GitHub Advisory).

The vulnerability stems from improper hostname parsing in the proxy's deny list feature. When processing HTTP requests, the proxy failed to properly handle hostnames enclosed in square brackets, allowing bypass of intended access restrictions. The issue has been assigned a CVSS v3.1 base score of 5.3 (MEDIUM) with a vector string of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N, indicating network accessibility with low attack complexity and no required privileges or user interaction (NVD).

The vulnerability could allow attackers to bypass Smokescreen's deny list feature, potentially enabling unauthorized access to resources that should have been blocked. This bypass specifically affected the HTTP proxy functionality, potentially compromising the security measures put in place to prevent SSRF attacks (GitHub Advisory).

The vulnerability has been patched in Smokescreen version 0.0.4. Users are strongly advised to upgrade to this version or later to address the security issue. The fix involves proper parsing of hostnames to prevent the square bracket bypass technique (GitHub Patch).