CVE-2023-29406

Aliases:GO-2023-1878BIT-golang-2023-29406

Advisory lineage Upstream: 0 Downstream: 28

Downstream

DEBIAN-CVE-2023-29406 OPENSUSE-SU-2024:13046-1 OPENSUSE-SU-2024:13074-1 RHBA-2024:2274 RHBA-2024:3053 RHSA-2023:5721

Modified

Published: 11 Jul 2023, 19:23

Last modified:13 Feb 2025, 16:49

Vulnerability Summary

Overall Risk (default)

medium

26/100

CVSS Score

6.5 MEDIUM

v3.1 (nvd)

EPSS Score

0.34% LOW

0% probability +0.09%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

11 Jul 2023, 19:23

Published

Vulnerability first disclosed

13 Feb 2025, 16:49

Last Modified

Vulnerability information updated

Description

The HTTP/1 client does not fully validate the contents of the Host header. A maliciously crafted Host header can inject additional headers or entire requests. With fix, the HTTP/1 client now refuses to send requests containing an invalid Request.Host or Request.URL.Host value.

CVSS Metrics

v3.1•MEDIUM•Score: 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

EPSS Trends

Current EPSS score: 0.34%• Percentile: 57%

Techniques & Countermeasures

CWE-436•Interpretation Conflict
Product A handles inputs or steps differently than Product B, which causes A to perform incorrect actions based on its perception of B's state.

Affected Systems

go standard library•net/http
< 1.19.11 | ≥ 1.20.0-0, < 1.20.6
golang•go
< 1.19.11 | ≥ 1.20.0, < 1.20.6
Go•stdlib
≥ 1.20.0-0, < 1.20.6