Vulnerability Details CVE-2017-16005
Http-signature is a "Reference implementation of Joyent's HTTP Signature Scheme". In versions <=0.9.11, http-signature signs only the header values, but not the header names. This makes http-signature vulnerable to header forgery. Thus, if an attacker can intercept a request, he can swap header names and change the meaning of the request without changing the signature.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.7%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2017-16005
-
cpe:2.3:a:joyent:http-signature:0.9.0
-
cpe:2.3:a:joyent:http-signature:0.9.10
-
cpe:2.3:a:joyent:http-signature:0.9.11
-
cpe:2.3:a:joyent:http-signature:0.9.2
-
cpe:2.3:a:joyent:http-signature:0.9.3
-
cpe:2.3:a:joyent:http-signature:0.9.4
-
cpe:2.3:a:joyent:http-signature:0.9.5
-
cpe:2.3:a:joyent:http-signature:0.9.6
-
cpe:2.3:a:joyent:http-signature:0.9.7
-
cpe:2.3:a:joyent:http-signature:0.9.8
-
cpe:2.3:a:joyent:http-signature:0.9.9