Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-23934

Published: 14/02/2023 Updated: 18/08/2023
CVSS v3 Base Score: 3.5 | Impact Score: 1.4 | Exploitability Score: 2.1
VMScore: 0
Subscribe to Werkzeug

Vulnerability Summary

Werkzeug is a comprehensive WSGI web application library. Browsers may allow "nameless" cookies that look like `=value` instead of `key=value`. A vulnerable browser may allow a compromised application on an adjacent subdomain to exploit this to set a cookie like `=__Host-test=bad` for another subdomain. Werkzeug before 2.2.3 will parse the cookie `=__Host-test=bad` as __Host-test=bad`. If a Werkzeug application is running next to a vulnerable or malicious subdomain which sets such a cookie using a vulnerable browser, the Werkzeug application will see the bad cookie value but the valid cookie key. The issue is fixed in Werkzeug 2.2.3.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

palletsprojects werkzeug

Vendor Advisories

Red Hat: Important: Red Hat OpenStack Platform 17.0 (python-werkzeug) security update
Synopsis Important: Red Hat OpenStack Platform 170 (python-werkzeug) security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for python-werkzeug is now available for Red Hat OpenStackPlatform 170 (Wall ...
Debian CVElist Bug Report Logs: python-werkzeug: CVE-2023-23934 CVE-2023-25577
Debian Bug report logs - #1031370 python-werkzeug: CVE-2023-23934 CVE-2023-25577 Package: src:python-werkzeug; Maintainer for src:python-werkzeug is Debian Python Team <team+python@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 15 Feb 2023 21:36:02 UTC Severity: important Tags: ...
Debian Security Advisories: DSA-5470-1 python-werkzeug -- security update
Several vulnerabilities were discovered in python-werkzeug, a collection of utilities for WSGI applications CVE-2023-23934 It was discovered that Werkzeug did not properly handle the parsing of nameless cookies which may allow shadowing of other cookies CVE-2023-25577 It was discovered that Werkzeug could parse unlimited number of ...
Red Hat:
Description<!---->A flaw was found in python-werkzeug Browsers may allow "nameless" cookies like =value instead of key=value A vulnerable browser may allow a compromised application on an adjacent subdomain to exploit this to set a cookie for another subdomain If a Werkzeug application is running next to a vulnerable or malicious subdomain that ...

ICS Advisories

https://ics-cert.us-cert.gov/advisories/0600b443ff4393d097c485fbc8d3ed3b
Critical Infrastructure Sectors: Critical Manufacturing

References

CWE-20https://github.com/pallets/werkzeug/security/advisories/GHSA-px8h-6qxv-m22qhttps://github.com/pallets/werkzeug/commit/cf275f42acad1b5950c50ffe8ef58fe62cdce028https://github.com/pallets/werkzeug/releases/tag/2.2.3https://www.debian.org/security/2023/dsa-5470https://security.netapp.com/advisory/ntap-20230818-0003/https://access.redhat.com/errata/RHSA-2023:1018https://www.debian.org/security/2023/dsa-5470https://nvd.nist.govhttps://www.cisa.gov/news-events/ics-advisories/icsa-24-046-11
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322CVE-2006-4304wirelessCVE-2023-23022local file inclusionCVE-2024-27058CVE-2024-33820open redirectCVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook