CVE-2025-4673 - Vulnerability Details

- Sensitive headers not cleared on cross-origin redirect in net/http

Description

Proxy-Authorization and Proxy-Authenticate headers persisted on cross-origin redirects potentially leaking sensitive information.

Published: 2025-06-11

Score: 6.8 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Go standard library

net/http

unaffected

Version	Status	Constraints
`0`	affected	< 1.23.10
`1.24.0-0`	affected	< 1.24.4

No data.

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 10
golang-0:1.24.4-1.el10_0	cpe:/o:redhat:enterprise_linux:10.0	RHSA-2025:10677	2025-07-09T00:00:00Z
Red Hat Enterprise Linux 8
go-toolset:rhel8-8100020250705224704.a3795dee	cpe:/a:redhat:enterprise_linux:8	RHSA-2025:10672	2025-07-09T00:00:00Z
Red Hat Enterprise Linux 9
golang-0:1.24.4-1.el9_6	cpe:/a:redhat:enterprise_linux:9	RHSA-2025:10676	2025-07-09T00:00:00Z
Red Hat OpenShift distributed tracing 3.6.1
registry.redhat.io/rhosdt/opentelemetry-collector-rhel8:sha256:93a3f6c10968431079bf0b637b029406d6a0bdc9521f3a02b062af7a3539995e	cpe:/a:redhat:openshift_distributed_tracing:3.6::el8	RHSA-2025:10735	2025-07-09T00:00:00Z
registry.redhat.io/rhosdt/opentelemetry-rhel8-operator:sha256:5bb83d0b9387f51291c3977d37aab8a19e978a7dccf3d72cae0dabb66bd26df4	cpe:/a:redhat:openshift_distributed_tracing:3.6::el8	RHSA-2025:10735	2025-07-09T00:00:00Z
registry.redhat.io/rhosdt/opentelemetry-target-allocator-rhel8:sha256:f49a121a3d0ec81f510680cd47c552f82c48889f28d3f14037c582636085410a	cpe:/a:redhat:openshift_distributed_tracing:3.6::el8	RHSA-2025:10735	2025-07-09T00:00:00Z

No data available yet.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2025-18133	Proxy-Authorization and Proxy-Authenticate headers persisted on cross-origin redirects potentially leaking sensitive information.
Ubuntu USN	USN-7574-1	Go vulnerabilities

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00074.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://go.dev/cl/679257
https://go.dev/issue/73816
https://groups.google.com/g/golang-announce/c/ufZ8WpEsA3A
https://nvd.nist.gov/vuln/detail/CVE-2025-4673
https://pkg.go.dev/vuln/GO-2025-3751
https://www.cve.org/CVERecord?id=CVE-2025-4673

History

Sun, 13 Jul 2025 13:45:00 +0000

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.0004}`	epss `{'score': 0.00044}`

Thu, 10 Jul 2025 03:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat openshift Distributed Tracing
CPEs		cpe:/a:redhat:openshift_distributed_tracing:3.6::el8
Vendors & Products		Redhat openshift Distributed Tracing

Wed, 09 Jul 2025 16:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat Redhat enterprise Linux
CPEs		cpe:/a:redhat:enterprise_linux:8 cpe:/a:redhat:enterprise_linux:9 cpe:/o:redhat:enterprise_linux:10.0
Vendors & Products		Redhat Redhat enterprise Linux

Thu, 19 Jun 2025 03:45:00 +0000

Type	Values Removed	Values Added
References		https://nvd.nist.gov/vuln/detail/CVE-2025-4673 https://www.cve.org/CVERecord?id=CVE-2025-4673
Metrics	threat_severity `None`	threat_severity `Moderate`

Wed, 11 Jun 2025 18:15:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 6.8, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 11 Jun 2025 17:00:00 +0000

Type	Values Removed	Values Added
Description		Proxy-Authorization and Proxy-Authenticate headers persisted on cross-origin redirects potentially leaking sensitive information.
Title		Sensitive headers not cleared on cross-origin redirect in net/http
References		https://go.dev/cl/679257 https://go.dev/issue/73816 https://groups.google.com/g/golang-announce/c/ufZ8WpEsA3A https://pkg.go.dev/vuln/GO-2025-3751

Subscriptions

Redhat Enterprise Linux Openshift Distributed Tracing

MITRE

Status: PUBLISHED

Assigner: Go

Published: 2025-06-11T16:42:53.054Z

Updated: 2025-06-11T17:59:48.033Z

Reserved: 2025-05-13T23:30:53.327Z

Link: CVE-2025-4673

Vulnrichment

Updated: 2025-06-11T17:59:18.551Z

NVD

Status : Deferred

Published: 2025-06-11T17:15:42.993

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-4673

Redhat

Severity : Moderate

Publid Date: 2025-06-11T16:42:53Z

Links: CVE-2025-4673 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

No weakness.

Tracking

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object