Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2022-23607

Good to know:

icon
icon

Date: February 1, 2022

treq is an HTTP library inspired by requests but written on top of Twisted's Agents. Treq's request methods ("treq.get", "treq.post", etc.) and "treq.client.HTTPClient" constructor accept cookies as a dictionary. Such cookies are not bound to a single domain, and are therefore sent to every domain ("supercookies"). This can potentially cause sensitive information to leak upon an HTTP redirect to a different domain., e.g. should "https://example.com"; redirect to "http://cloudstorageprovider.com"; the latter will receive the cookie "session". Treq 2021.1.0 and later bind cookies given to request methods ("treq.request", "treq.get", "HTTPClient.request", "HTTPClient.get", etc.) to the origin of the url parameter. Users are advised to upgrade. For users unable to upgrade Instead of passing a dictionary as the cookies argument, pass a "http.cookiejar.CookieJar" instance with properly domain- and scheme-scoped cookies in it.

Language: Python

Severity Score

Related Resources (10)

https://github.com/twisted/treq/security/advisories/GHSA-fhpf-pp6p-55qc
https://github.com/twisted/treq/commit/1da6022cc880bbcff59321abe02bf8498b89efb2
https://huntr.dev/bounties/3c9204fc-a3d1-4441-8599-924c5f57e7ae/?token=06d930e37046c914bcb037e85cc227dc7b510b475989fc69837566562ba899277d46b0fb4b1e21cdcb6ddc1b7d9b1ded632cf3a3551ecb89afca16a63b34641284b50479d5195bba2ac09b116f3dd4fad27f54404c2de922c05c8c8b744aec27bb4d4d198cb8b3abf479af0c2d5fbaa10412da7922594ac3eb39
https://lists.debian.org/debian-lts-announce/2022/03/msg00025.html
https://security-tracker.debian.org/tracker/CVE-2022-23607
https://nvd.nist.gov/vuln/detail/CVE-2022-23607
https://github.com/twisted/treq
https://github.com/twisted/treq/releases/tag/release-22.1.0
https://github.com/pypa/advisory-database/tree/main/vulns/treq/PYSEC-2022-26.yaml
https://www.mend.io/vulnerability-database/CVE-2022-23607

Severity Score

Weakness Type (CWE)

Exposure of Sensitive Information to an Unauthorized Actor

CWE-200

URL Redirection to Untrusted Site ('Open Redirect')

CWE-601

Direct Request ('Forced Browsing')

CWE-425

Top Fix

icon

Upgrade Version

Upgrade to version treq - 22.1.0

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
User Interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality (C): HIGH
Integrity (I): NONE
Availability (A): NONE

CVSS v2

Base Score:
Access Vector (AV): NETWORK
Access Complexity (AC): MEDIUM
Authentication (AU): NONE
Confidentiality (C): PARTIAL
Integrity (I): NONE
Availability (A): NONE
Additional information:

Do you need more information?

Contact Us