PT-2023-7418 · Aiohttp+5 · Aiohttp+5

Jnovikov

Publicado

2023-07-19

Atualizado

2025-11-04

CVE-2023-49081

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions aiohttp versions prior to 3.9.0

Description The issue arises from improper validation, allowing an attacker to modify the HTTP request or create a new one if they control the HTTP version. This can lead to CRLF injection and Request Smuggling. The vulnerability is exploitable when the attacker can control the HTTP version of the request, including its type, and when the Connection header is passed to the headers parameter. For example, if an unvalidated JSON value is used as a version and the attacker passes an array as the version parameter, it can bypass validation.

Recommendations For versions prior to 3.9.0, update to version 3.9.0 to resolve the issue. As a temporary workaround, validate the user input to the version parameter to ensure it is a str.

Exploit

Correção

DoS

RCE

HTTP Request/Response Smuggling

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20CWE-444CWE-93

Identificadores relacionados

ALT-PU-2024-16702

ALT-PU-2024-6120

BDU:2023-05462

BDU:2023-08273

BDU:2023-08455

BDU:2024-02173

BDU:2024-02174

CVE-2023-49081

DLA-4041-1

DSA-5828-1

GHSA-6X4H-9622-FQR6

GHSA-Q3QX-C6G2-7PW2

OESA-2023-1900

OPENSUSE-SU-2024:13691-1

OPENSUSE-SU-2024_0033-1

OPENSUSE-SU-2024_0034-1

PYSEC-2023-250

RHSA-2024:1057

RHSA-2024:1536

RHSA-2024:1878

RHSA-2024:2010

SUSE-SU-2024:0033-1

SUSE-SU-2024:0034-1

SUSE-SU-2024_0034-1

USN-7642-1

Produtos afetados

Alt Linux

Linuxmint

Red Os

Suse

Ubuntu

Aiohttp

PT-2023-7418 · Aiohttp+5 · Aiohttp+5

CVE-2023-49081

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 72