WS-2018-0076 (Medium) detected in tunnel-agent-0.4.3.tgz

[mend-for-github-com]

WS-2018-0076 - Medium Severity Vulnerability

Vulnerable Library - tunnel-agent-0.4.3.tgz

HTTP proxy tunneling agent. Formerly part of mikeal/request, now a standalone module.

Library home page: https://registry.npmjs.org/tunnel-agent/-/tunnel-agent-0.4.3.tgz

Path to dependency file: angular-recaptcha/package.json

Path to vulnerable library: angular-recaptcha/node_modules/tunnel-agent/package.json

Dependency Hierarchy:

• grunt-karma-coveralls-2.5.4.tgz (Root Library)
  • coveralls-2.13.3.tgz
    • request-2.79.0.tgz
      • ❌ tunnel-agent-0.4.3.tgz (Vulnerable Library)

Found in HEAD commit: d0c7317c1908251604c4e710c797fdf348d2bc46

Found in base branch: master

Vulnerability Details

Versions of tunnel-agent before 0.6.0 are vulnerable to memory exposure.

This is exploitable if user supplied input is provided to the auth value and is a number.

Publish Date: 2017-03-05

URL: WS-2018-0076

CVSS 3 Score Details (5.1)

Base Score Metrics:

• Exploitability Metrics:
  • Attack Vector: Local
  • Attack Complexity: High
  • Privileges Required: None
  • User Interaction: None
  • Scope: Unchanged
• Impact Metrics:
  • Confidentiality Impact: High
  • Integrity Impact: None
  • Availability Impact: None

For more information on CVSS3 Scores, click here.

Suggested Fix

Type: Upgrade version

Origin: https://nodesecurity.io/advisories/598

Release Date: 2018-01-27

Fix Resolution: 0.6.0