AZL-31338

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-31338.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-31338

Upstream

CVE-2023-45143

Published

2023-10-12T17:15:10Z

Modified

2026-04-01T05:10:09.870352Z

Severity

3.5 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N CVSS Calculator

Summary

CVE-2023-45143 affecting package nodejs18 for versions less than 18.18.2-2

Details

Undici is an HTTP/1.1 client written from scratch for Node.js. Prior to version 5.26.2, Undici already cleared Authorization headers on cross-origin redirects, but did not clear Cookie headers. By design, cookie headers are forbidden request headers, disallowing them to be set in RequestInit.headers in browser environments. Since undici handles headers more liberally than the spec, there was a disconnect from the assumptions the spec made, and undici's implementation of fetch. As such this may lead to accidental leakage of cookie to a third-party site or a malicious attacker who can control the redirection target (ie. an open redirector) to leak the cookie to the third party site. This was patched in version 5.26.2. There are no known workarounds.

References

https://nvd.nist.gov/vuln/detail/CVE-2023-45143

Affected packages

Azure Linux:2 / nodejs18

Package

Name: nodejs18
Purl: pkg:rpm/azure-linux/nodejs18

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

18.18.2-2

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-31338.json"