CVE-2023-28155

Published: Mar 16, 2023Modified: Nov 21, 2024

6.1

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Exploitability: 2.8 / Impact: 2.7

Source: NVD

Description

The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Affected (1)

Products: Request Project: Request

Request Project

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Request Project Request	Up to 2.88.1

Related CWEs

Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

References (8)

https://doyensec.com/resources/Doyensec_Advisory_RequestSSRF_Q12023.pdf

Source: cve@mitre.org

ExploitPatchTechnical DescriptionThird Party Advisory

https://github.com/request/request/issues/3442

Source: cve@mitre.org

ExploitIssue TrackingPatchTechnical DescriptionVendor Advisory

https://github.com/request/request/pull/3444

Source: cve@mitre.org

Patch

https://security.netapp.com/advisory/ntap-20230413-0007/

Source: cve@mitre.org

https://doyensec.com/resources/Doyensec_Advisory_RequestSSRF_Q12023.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchTechnical DescriptionThird Party Advisory

https://github.com/request/request/issues/3442

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitIssue TrackingPatchTechnical DescriptionVendor Advisory

https://github.com/request/request/pull/3444

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://security.netapp.com/advisory/ntap-20230413-0007/

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.