PT-2022-19246 · Go+9 · Go+9

Daniel Abeles

+1

·

Published

2022-10-04

·

Updated

2025-02-28

·

CVE-2022-2880

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Name of the Vulnerable Software and Affected Versions Go versions prior to the fixed version
Description The issue concerns the ReverseProxy in Go, which includes raw query parameters from the inbound request, including unparsable parameters rejected by net/http, potentially permitting query parameter smuggling when a Go proxy forwards a parameter with an unparsable value. After the fix, ReverseProxy sanitizes the query parameters in the forwarded query when the outbound request's Form field is set after the ReverseProxy Director function returns, indicating that the proxy has parsed the query parameters. Proxies that do not parse query parameters continue to forward the original query parameters unchanged.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

HTTP Request/Response Smuggling

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-444

Related Identifiers

ALSA-2023:0328
ALSA-2023:0446
ALSA-2023:2167
ALSA-2023:2204
ALSA-2023:2357
ALSA-2023:2780
ALSA-2023:2784
ALSA-2023:2866
ALSA-2024:0121
ALSA-2024:3254
ALT-PU-2022-2743
ALT-PU-2022-2873
ALT-PU-2023-1205
AZL-11129
AZL-37469
AZL-79010
BIT-GOLANG-2022-2880
CESA-2023_0446
CESA-2023_2780
CESA-2023_2784
CESA-2023_2866
CESA-2024_0121
CESA-2024_2988
CESA-2024_3254
CVE-2022-2880
GO-2022-1038
INFSA-2024_2988
MGASA-2022-0377
OESA-2022-2004
OESA-2025-1052
OESA-2025-1053
OESA-2025-1054
OESA-2025-1055
OESA-2025-1056
OESA-2025-1185
OPENSUSE-SU-2022_3668-1
OPENSUSE-SU-2022_3669-1
OPENSUSE-SU-2024:12391-1
OPENSUSE-SU-2024:12392-1
RHSA-2022:7398
RHSA-2023:0328
RHSA-2023:0445
RHSA-2023:0446
RHSA-2023:0708
RHSA-2023:0727
RHSA-2023:1275
RHSA-2023:2167
RHSA-2023:2204
RHSA-2023:2357
RHSA-2023:2780
RHSA-2023:2784
RHSA-2023:2866
RHSA-2023:3613
RHSA-2023:4003
RHSA-2023_0328
RHSA-2023_0446
RHSA-2023_2167
RHSA-2023_2204
RHSA-2023_2357
RHSA-2023_2780
RHSA-2023_2784
RHSA-2023_2866
RHSA-2024:0121
RHSA-2024:2988
RHSA-2024:3254
RHSA-2024_0121
RHSA-2024_2988
RHSA-2024_3254
RLSA-2023:0328
RLSA-2023:0446
RLSA-2024:3254
SUSE-SU-2022:3668-1
SUSE-SU-2022:3669-1
SUSE-SU-2023:2312-1
USN-6038-1
USN-6038-2

Affected Products

Alt Linux
Almalinux
Centos
Debian
Go
Linuxmint
Red Hat
Rocky Linux
Suse
Ubuntu