PT-2022-23051 · Undici+1 · Undici+1

Happyhacking-K

Published

2022-08-13

Updated

2023-03-28

CVE-2022-35948

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions undici version 5.8.0

Description The issue is related to CRLF Injection on headers when using unsanitized input as request headers, specifically inside the content-type header. This can lead to performing multiple requests in a single API call. For example, using the content-type header with unsanitized input like 'application/jsonr r GET /foo2 HTTP/1.1' can result in two requests: one to http://localhost:3000/ and another to http://localhost:3000/foo2.

Recommendations For undici version 5.8.0, update to version 5.8.1 to resolve the issue. As a temporary workaround, sanitize input when sending content-type headers using user input.

Exploit

Fix

Special Elements Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-74CWE-93

Related Identifiers

CVE-2022-35948

GHSA-F772-66G8-Q5H3

OPENSUSE-SU-2022_3250-1

OPENSUSE-SU-2022_3251-1

SUSE-SU-2022:3196-1

SUSE-SU-2022:3250-1

SUSE-SU-2022:3251-1

Affected Products

Suse

Undici

PT-2022-23051 · Undici+1 · Undici+1

CVE-2022-35948

Weakness Enumeration

Related Identifiers

Affected Products

References · 27