Vulnerability Description
In scrapy version 2.10.1, an issue was identified where the Authorization header, containing credentials for server authentication, is leaked to a third-party site during a cross-domain redirect. This vulnerability arises from the failure to remove the Authorization header when redirecting across domains. The exposure of the Authorization header to unauthorized actors could potentially allow for account hijacking.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Scrapy | Scrapy | < 2.11.1 |
Related Weaknesses (CWE)
References
- https://github.com/scrapy/scrapy/commit/5bcb8fd5019c72d05c4a96da78a7fcb6ecb55b75Patch
- https://huntr.com/bounties/49974321-2718-43e3-a152-62b16eed72a9ExploitIssue TrackingPatch
- https://github.com/scrapy/scrapy/commit/5bcb8fd5019c72d05c4a96da78a7fcb6ecb55b75Patch
- https://huntr.com/bounties/49974321-2718-43e3-a152-62b16eed72a9ExploitIssue TrackingPatch
FAQ
What is CVE-2024-3574?
CVE-2024-3574 is a vulnerability with a CVSS score of 7.5 (HIGH). In scrapy version 2.10.1, an issue was identified where the Authorization header, containing credentials for server authentication, is leaked to a third-party site during a cross-domain redirect. This...
How severe is CVE-2024-3574?
CVE-2024-3574 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-3574?
Check the references section above for vendor advisories and patch information. Affected products include: Scrapy Scrapy.