CVE-2023-45289

Aliases:CGA-25gv-3qrh-8g5jBIT-golang-2023-45289CGA-3fw9-g448-cq83CGA-8rhm-9jx9-j3g6GHSA-32ch-6x54-q4h9GO-2024-2600
Advisory lineage Upstream: 0 Downstream: 19
Deferred
Published: 05 Mar 2024, 22:22
Last modified:13 Feb 2025, 17:14

Vulnerability Summary

Overall Risk (default)
low
17/100
CVSS Score
4.3 MEDIUM
v3.1 (cve.org)
EPSS Score
0.61% LOW
1% probability +0.16%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

05 Mar 2024, 22:22
Published
Vulnerability first disclosed
13 Feb 2025, 17:14
Last Modified
Vulnerability information updated

Description

When following an HTTP redirect to a domain which is not a subdomain match or exact match of the initial domain, an http.Client does not forward sensitive headers such as "Authorization" or "Cookie". For example, a redirect from foo.com to www.foo.com will forward the Authorization header, but a redirect to bar.com will not. A maliciously crafted HTTP redirect could cause sensitive headers to be unexpectedly forwarded.

CVSS Metrics

  • v3.1MEDIUMScore: 4.3CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

EPSS Trends

Current EPSS score: 0.61% Percentile: 70%

Affected Systems

  • chainguardcluster-autoscaler-1.27

    < 1.27.5-r2

  • chainguardcluster-autoscaler-1.27-compat

    < 1.27.5-r2

  • chainguardcluster-autoscaler-1.28

    < 1.28.2-r2

  • chainguardcluster-autoscaler-1.28-compat

    < 1.28.2-r2

  • chainguardnewrelic-fluent-bit-output

    < 1.19.2-r1

  • wolficluster-autoscaler-1.27

    < 1.27.5-r2

  • wolficluster-autoscaler-1.27-compat

    < 1.27.5-r2

  • wolficluster-autoscaler-1.28

    < 1.28.2-r2

  • wolficluster-autoscaler-1.28-compat

    < 1.28.2-r2

  • go standard librarynet/http

    < 1.21.8 | ≥ 1.22.0-0, < 1.22.1

  • go standard librarynet/http/cookiejar

    < 1.21.8 | ≥ 1.22.0-0, < 1.22.1

  • Gostdlib

    ≥ 1.22.0-0, < 1.22.1

References (6)