CVE-2023-26142

MEDIUM

crow - SSRF

Title source: llm

Description

All versions of the package crow are vulnerable to HTTP Response Splitting when untrusted user input is used to build header values. Header values are not properly sanitized against CRLF Injection in the set_header and add_header functions. An attacker can add the \r\n (carriage return line feeds) characters to end the HTTP response headers and inject malicious content.

References (2)

[Exploit, Third Party Advisory] https://gist.github.com/dellalibera/9247769cc90ed96c0d72ddbcba88c65c

[Third Party Advisory] https://security.snyk.io/vuln/SNYK-UNMANAGED-CROW-5665556

Scores

CVSS v3 6.5

EPSS 0.0022

EPSS Percentile 44.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

CWE

CWE-113 CWE-74

Status published

Products (1)

crowcpp/crow 1.0\+5

Published Sep 12, 2023

Tracked Since Feb 18, 2026