CVE-2025-66035

HIGH
中文标题:
(暂无数据)
英文标题:
Angular HTTP Client Has XSRF Token Leakage via Protocol-Relative URLs
CVSS分数: 7.7
发布时间: 2025-11-26 22:18:35
漏洞类型: (暂无数据)
状态: PUBLISHED
数据质量分数: 0.40
数据版本: v2
漏洞描述
中文描述:

(暂无数据)

英文描述:

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.

CWE类型:
CWE-359 CWE-201
标签:
(暂无数据)
受影响产品
厂商 产品 版本 版本范围 平台 CPE
angular angular >= 21.0.0-next.0, < 21.0.1 - - cpe:2.3:a:angular:angular:>=_21.0.0-next.0,_<_21.0.1:*:*:*:*:*:*:*
angular angular >= 20.0.0-next.0, < 20.3.14 - - cpe:2.3:a:angular:angular:>=_20.0.0-next.0,_<_20.3.14:*:*:*:*:*:*:*
angular angular < 19.2.16 - - cpe:2.3:a:angular:angular:<_19.2.16:*:*:*:*:*:*:*
解决方案
中文解决方案:
(暂无数据)
英文解决方案:
(暂无数据)
临时解决方案:
(暂无数据)
参考链接
https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37 x_refsource_CONFIRM
cve.org
访问
https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f x_refsource_MISC
cve.org
访问
https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc x_refsource_MISC
cve.org
访问
https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e x_refsource_MISC
cve.org
访问
https://github.com/angular/angular/releases/tag/19.2.16 x_refsource_MISC
cve.org
访问
https://github.com/angular/angular/releases/tag/20.3.14 x_refsource_MISC
cve.org
访问
https://github.com/angular/angular/releases/tag/21.0.1 x_refsource_MISC
cve.org
访问
CVSS评分详情
4.0 (cna)
HIGH
7.7
CVSS向量: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N
机密性
NONE
完整性
NONE
可用性
NONE
后续系统影响 (Subsequent):
机密性
HIGH
完整性
NONE
可用性
NONE
时间信息
发布时间:
2025-11-26 22:18:35
修改时间:
2025-11-28 18:29:18
创建时间:
2026-01-12 02:12:23
更新时间:
2026-01-12 02:28:03
利用信息
暂无可利用代码信息
数据源详情
数据源 记录ID 版本 提取时间
CVE cve_CVE-2025-66035 2025-11-29 02:09:37 2026-01-12 02:12:23
NVD nvd_CVE-2025-66035 2025-12-02 03:00:02 2026-01-12 02:28:03
版本与语言
当前版本: v2
主要语言: EN
支持语言:
EN
安全公告
暂无安全公告信息
变更历史
v2 NVD
2026-01-12 02:28:03
data_sources: ['cve'] → ['cve', 'nvd']
查看详细变更
  • data_sources: ['cve'] -> ['cve', 'nvd']