In the unpatched version, the Proxy-Authorization header is leaked to the target website. This poses a security threat, as the chosen authentication scheme would enable a rogue target to get valid proxy credentials.
Unlike Authorization, the Proxy-Authorization header field applies only to the next inbound proxy that demanded authentication using the Proxy-Authenticate field. [...] A proxy MAY relay the credentials from the client request to the next proxy if that is the mechanism by which the proxies cooperatively authenticate a given request.
Hi,
In the unpatched version, the
Proxy-Authorization
header is leaked to the target website. This poses a security threat, as the chosen authentication scheme would enable a rogue target to get valid proxy credentials.Moreover, as told in RFC7235, section 4.4:
Kind regards