SCA: security update for undici (GHSA-q768-x9m6-m9qp)

medium Tenable Self-Hosted Container Security Plugin ID 417954

Description

There are packages installed that are affected by a vulnerability referenced in the following CVE:

- Authorization headers are cleared on cross-origin redirect. However, cookie headers which are sensitive
headers and are official headers found in the spec, remain uncleared. There are active users using cookie
headers in undici. This may lead to accidental leakage of cookie to a 3rd-party site or a malicious
attacker who can control the redirection target (ie. an open redirector) to leak the cookie to the 3rd
party site. This was patched in v5.7.1. By default, this vulnerability is not exploitable. Do not enable
redirections, i.e. `maxRedirections: 0` (the default). (CVE-2022-31151)

See Also

https://github.com/advisories/GHSA-q768-x9m6-m9qp

Plugin Details

Severity: Medium

ID: 417954

Version: Revision 1.7

Type: Local

Family: SCA Checks

Published: 1/23/2025

Updated: 7/2/2026

Supported Sensors: Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Low

Score: 2.1

Percentile: 6.91

Vendor

Vendor Severity: Low

CVSS v2

Risk Factor: Medium

Base Score: 6.4

Temporal Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N

CVSS Score Source: CVE-2022-31151

CVSS v3

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 5.9

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 7/21/2022

Vulnerability Publication Date: 7/20/2022

Reference Information

CVE: CVE-2022-31151