Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentGoVULNRICHMENT:CVE-2023-45289
HistoryMar 05, 2024 - 10:22 p.m.

CVE-2023-45289 Incorrect forwarding of sensitive headers and cookies on HTTP redirect in net/http

2024-03-0522:22:30
Go
github.com
3
http redirect
sensitive headers
net/http
cve-2023-45289

AI Score

6.8

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON

When following an HTTP redirect to a domain which is not a subdomain match or exact match of the initial domain, an http.Client does not forward sensitive headers such as “Authorization” or “Cookie”. For example, a redirect from foo.com to www.foo.com will forward the Authorization header, but a redirect to bar.com will not. A maliciously crafted HTTP redirect could cause sensitive headers to be unexpectedly forwarded.

CNA Affected

[
  {
    "vendor": "Go standard library",
    "product": "net/http",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "1.21.8",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "1.22.0-0",
        "lessThan": "1.22.1",
        "versionType": "semver"
      }
    ],
    "packageName": "net/http",
    "collectionURL": "https://pkg.go.dev",
    "defaultStatus": "unaffected",
    "programRoutines": [
      {
        "name": "isDomainOrSubdomain"
      },
      {
        "name": "Client.Do"
      },
      {
        "name": "Client.Get"
      },
      {
        "name": "Client.Head"
      },
      {
        "name": "Client.Post"
      },
      {
        "name": "Client.PostForm"
      },
      {
        "name": "Get"
      },
      {
        "name": "Head"
      },
      {
        "name": "Post"
      },
      {
        "name": "PostForm"
      }
    ]
  },
  {
    "vendor": "Go standard library",
    "product": "net/http/cookiejar",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "1.21.8",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "1.22.0-0",
        "lessThan": "1.22.1",
        "versionType": "semver"
      }
    ],
    "packageName": "net/http/cookiejar",
    "collectionURL": "https://pkg.go.dev",
    "defaultStatus": "unaffected",
    "programRoutines": [
      {
        "name": "isIP"
      },
      {
        "name": "Jar.Cookies"
      },
      {
        "name": "Jar.SetCookies"
      }
    ]
  }
]

Related

osv 198
ubuntucve 1
osv
osv
CGA-wrgw-q647-968r
2024-06-06 12:29:49
CGA-wmg7-r4vj-xm68
2024-06-06 12:29:47
CGA-wxjr-m96h-2j75
2024-06-06 12:29:52
ubuntucve
ubuntucve
CVE-2023-45289
2024-03-05 00:00:00

AI Score

6.8

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2023-45289
osv198ubuntucve1