Vulnerability Details : CVE-2023-30846
typed-rest-client is a library for Node Rest and Http Clients with typings for use with TypeScript. Users of the typed-rest-client library version 1.7.3 or lower are vulnerable to leak authentication data to 3rd parties. The flow of the vulnerability is as follows: First, send any request with `BasicCredentialHandler`, `BearerCredentialHandler` or `PersonalAccessTokenCredentialHandler`. Second, the target host may return a redirection (3xx), with a link to a second host. Third, the next request will use the credentials to authenticate with the second host, by setting the `Authorization` header. The expected behavior is that the next request will *NOT* set the `Authorization` header. The problem was fixed in version 1.8.0. There are no known workarounds.
Exploit prediction scoring system (EPSS) score for CVE-2023-30846
Probability of exploitation activity in the next 30 days: 0.28%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 68 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2023-30846
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
3.9
|
3.6
|
NIST |
9.1
|
CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |
3.9
|
5.2
|
GitHub, Inc. |
CWE ids for CVE-2023-30846
-
The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.Assigned by: security-advisories@github.com (Primary)
References for CVE-2023-30846
-
https://github.com/microsoft/typed-rest-client/security/advisories/GHSA-558p-m34m-vpmq
Potential leak of authentication data to 3rd parties · Advisory · microsoft/typed-rest-client · GitHubVendor Advisory
-
https://github.com/microsoft/typed-rest-client/commit/f9ff755631b982ee1303dfc3e3c823d0d31233e8
Disable authentications on redirections (#207) · microsoft/typed-rest-client@f9ff755 · GitHubPatch
-
https://security.netapp.com/advisory/ntap-20230601-0008/
CVE-2023-30846 Node.js Vulnerability in NetApp Products | NetApp Product Security
Products affected by CVE-2023-30846
- cpe:2.3:a:microsoft:typed-rest-client:*:*:*:*:*:node.js:*:*