输出中的特殊元素转义处理不恰当(注入)

admin 2023-11-30 03:56:57 Ali_nvd 来源:ZONE.CI 全球网 0 阅读模式
输出中的特殊元素转义处理不恰当(注入)

CVE编号

CVE-2022-3918

利用情况

暂无

补丁情况

N/A

披露时间

2023-01-21
漏洞描述
A program using FoundationNetworking in swift-corelibs-foundation is potentially vulnerable to CRLF ( ) injection in URLRequest headers. In this vulnerability, a client can insert one or several CRLF sequences into a URLRequest header value. When that request is sent via URLSession to an HTTP server, the server may interpret the content after the CRLF as extra headers, or even a second request. For example, consider a URLRequest to http://example.com/ with the GET method. Suppose we set the URLRequest header "Foo" to the value "Bar Extra-Header: Added GET /other HTTP/1.1". When this request is sent, it will appear to the server as two requests: GET / HTTP/1.1 Foo: Bar Extra-Header: Added GET /other HTTP/1.1 In this manner, the client is able to inject extra headers and craft an entirely new request to a separate path, despite only making one API call in URLSession. If a developer has total control over the request and its headers, this vulnerability may not pose a threat. However, this vulnerability escalates if un-sanitized user input is placed in header values. If so, a malicious user could inject new headers or requests to an intermediary or backend server. Developers should be especially careful to sanitize user input in this case, or upgrade their version of swift-corelibs-foundation to include the patch below.
解决建议
建议您更新当前系统或软件至最新版,完成漏洞的修复。
参考链接
https://github.com/apple/swift-corelibs-foundation/security/advisories/GHSA-4...
受影响软件情况
# 类型 厂商 产品 版本 影响面
1
运行在以下环境
应用 apple swift_foundation * Up to (excluding) 5.7.3
运行在以下环境
系统 alibaba_cloud_linux_2.1903 kernel * Up to (excluding) 4.19.91-27.1.al7
运行在以下环境
系统 amazon_2 kernel * Up to (excluding) 5.4.214-120.368.amzn2
运行在以下环境
系统 amazon_2022 kernel * Up to (excluding) 5.15.72-43.134.amzn2022
运行在以下环境
系统 amazon_2023 kernel * Up to (excluding) 6.1.10-15.42.amzn2023
运行在以下环境
系统 anolis_os_23 kernel * Up to (excluding) 5.10
运行在以下环境
系统 anolis_os_7 kernel * Up to (excluding) 4.19
运行在以下环境
系统 anolis_os_8 kernel * Up to (excluding) 4.18
运行在以下环境
系统 centos_8 kernel * Up to (excluding) 4.18.0-477.10.1.el8_8
运行在以下环境
系统 kylinos_aarch64_V10SP2 kernel * Up to (excluding) 4.19.90-25.22.v2101.ky10
运行在以下环境
系统 kylinos_x86_64_V10SP2 kernel * Up to (excluding) 4.19.90-25.22.v2101.ky10
运行在以下环境
系统 opensuse_5.2 kernel * Up to (excluding) 5.3.18-150300.59.93.1
运行在以下环境
系统 opensuse_Leap_15.3 kernel * Up to (excluding) 5.3.18-150300.59.101.1
运行在以下环境
系统 opensuse_Leap_15.4 dtb-al * Up to (excluding) 5.14.21-150400.24.28.1.150400.24.9.5
运行在以下环境
系统 oracle_7 kernel * Up to (excluding) 5.4.17-2136.321.4.el7uek
运行在以下环境
系统 oracle_8 kernel * Up to (excluding) 4.18.0-477.10.1.el8_8
运行在以下环境
系统 oracle_9 kernel * Up to (excluding) 5.14.0-284.11.1.el9_2
运行在以下环境
系统 redhat_8 kernel * Up to (excluding) 4.18.0-477.10.1.el8_8
运行在以下环境
系统 redhat_9 kernel * Up to (excluding) 5.14.0-284.11.1.el9_2
运行在以下环境
系统 suse_12_SP5 kernel * Up to (excluding) 4.12.14-122.136.1
CVSS3评分 8.8
  • 攻击路径 网络
  • 攻击复杂度 低
  • 权限要求 低
  • 影响范围 未更改
  • 用户交互 无
  • 可用性 高
  • 保密性 高
  • 完整性 高
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-ID 漏洞类型
CWE-74 输出中的特殊元素转义处理不恰当(注入)
- avd.aliyun.com
weinxin
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
N/A Ali_nvd

N/A

N/ACVE编号 CVE-2024-9120利用情况 暂无补丁情况 N/A披露时间 2024-09-23漏洞描述Use after free in Dawn
评论:0   参与:  0