Lucene search

[email protected]CVE-2022-29167

HistoryMay 05, 2022 - 11:15 p.m.

CVE-2022-29167

2022-05-0523:15:09

CWE-400

CWE-1333

[email protected]

web.nvd.nist.gov

hawk

http

authentication

vulnerability

dos

parsehost

9.0.1

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

35.7%

JSON

Hawk is an HTTP authentication scheme providing mechanisms for making authenticated HTTP requests with partial cryptographic verification of the request and response, covering the HTTP method, request URI, host, and optionally the request payload. Hawk used a regular expression to parse Host HTTP header (Hawk.utils.parseHost()), which was subject to regular expression DoS attack - meaning each added character in the attacker’s input increases the computation time exponentially. parseHost() was patched in 9.0.1 to use built-in URL class to parse hostname instead. Hawk.authenticate() accepts options argument. If that contains host and port, those would be used instead of a call to utils.parseHost().

Affected configurations

Vulners

NVD

Node

mozillahawkRange<9.0.1

VendorProductVersionCPE
mozillahawk*cpe:2.3:a:mozilla:hawk:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mozilla	hawk	*	cpe:2.3:a:mozilla:hawk::::::::

CNA Affected

[
  {
    "product": "hawk",
    "vendor": "mozilla",
    "versions": [
      {
        "status": "affected",
        "version": "< 9.0.1"
      }
    ]
  }
]