VDB
CISA-2025-4673
CISA-2025-4673
PUBLISHED
CVSS 6.8 MEDIUM
Reported by Go · Published June 11, 2025
Proxy-Authorization and Proxy-Authenticate headers persisted on cross-origin redirects potentially leaking sensitive information.
Risk Scores
CVSS 3.1
6.8
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Go standard library | net/http | 0, 1.24.0-0 |
| Go standard library | net/http | 0, 1.24.0-0, 0 |
Timeline
- Jun 11, 2025 CVE Published
- Jun 11, 2025 CVE Updated