From cb33ee63e0f242b751f3e222c39bdac24d898c45 Mon Sep 17 00:00:00 2001
From: Merav <83602216+mer-b@users.noreply.github.com>
Date: Sun, 10 Sep 2023 17:45:35 +0300
Subject: [PATCH 1/2] add desync in azure front door

---
 vulnerabilities/azure-front-door.yaml | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 vulnerabilities/azure-front-door.yaml

diff --git a/vulnerabilities/azure-front-door.yaml b/vulnerabilities/azure-front-door.yaml
new file mode 100644
index 0000000..16b7ad6
--- /dev/null
+++ b/vulnerabilities/azure-front-door.yaml
@@ -0,0 +1,27 @@
+title: Client-side Desync in Azure Front Door
+slug: azure-front-door
+cves: null
+affectedPlatforms:
+- Azure
+affectedServices:
+- Azure Front Door
+image: amitai
+severity: Medium
+discoveredBy: 
+  name: Jeti
+  org: null
+  domain: https://blog.jeti.pw/
+  twitter: https://twitter.com/0xJeti
+publishedAt: 2023/06/27
+disclosedAt: 2023/05/08
+exploitabilityPeriod: null
+knownITWExploitation: false
+summary: |
+  A client-side Desync vulnerability was discovered in one of Microsoft Azure's CDN solutions known as Front Door. Exploiting this vulnerability could
+  also allow "universal" XSS.  
+manualRemediation: |
+  null
+detectionMethods: null
+contributor: https://github.com/korniko98
+references:
+- https://blog.jeti.pw/posts/knocking-on-the-front-door/
\ No newline at end of file

From ea8cce991869af5867ef376c77ef107b3c5af843 Mon Sep 17 00:00:00 2001
From: Amitai Cohen <71866656+korniko98@users.noreply.github.com>
Date: Sun, 24 Sep 2023 11:40:22 +0300
Subject: [PATCH 2/2] Update and rename azure-front-door.yaml to
 azure-front-door-desync.yaml

---
 vulnerabilities/azure-front-door-desync.yaml | 30 ++++++++++++++++++++
 vulnerabilities/azure-front-door.yaml        | 27 ------------------
 2 files changed, 30 insertions(+), 27 deletions(-)
 create mode 100644 vulnerabilities/azure-front-door-desync.yaml
 delete mode 100644 vulnerabilities/azure-front-door.yaml

diff --git a/vulnerabilities/azure-front-door-desync.yaml b/vulnerabilities/azure-front-door-desync.yaml
new file mode 100644
index 0000000..2946e43
--- /dev/null
+++ b/vulnerabilities/azure-front-door-desync.yaml
@@ -0,0 +1,30 @@
+title: Azure Front Door client-side desync
+slug: azure-front-door-desync
+cves: null
+affectedPlatforms:
+- Azure
+affectedServices:
+- Azure Front Door
+image: https://raw.githubusercontent.com/wiz-sec/open-cvdb/main/images/azure-front-door-desync.jpg
+severity: Medium
+discoveredBy: 
+  name: Jeti
+  org: null
+  domain: https://blog.jeti.pw/
+  twitter: 0xJeti
+publishedAt: 2023/06/27
+disclosedAt: 2023/05/08
+exploitabilityPeriod: null
+knownITWExploitation: false
+summary: |
+  A client-side desync vulnerability was discovered in Front Door, one of Azure's CDN solutions,
+  caused by mishandling of the 'Content-Length' header in HTTP requests. Exploiting this vulnerability
+  would most likely require user interaction through social engineering (such as clicking on a malicious
+  link), but could allow an attacker to steal session cookies or forge responses to victim requests.
+manualRemediation: |
+  null
+detectionMethods: null
+contributor: https://github.com/mer-b
+references:
+- https://blog.jeti.pw/posts/knocking-on-the-front-door/
+- https://portswigger.net/research/browser-powered-desync-attacks
diff --git a/vulnerabilities/azure-front-door.yaml b/vulnerabilities/azure-front-door.yaml
deleted file mode 100644
index 16b7ad6..0000000
--- a/vulnerabilities/azure-front-door.yaml
+++ /dev/null
@@ -1,27 +0,0 @@
-title: Client-side Desync in Azure Front Door
-slug: azure-front-door
-cves: null
-affectedPlatforms:
-- Azure
-affectedServices:
-- Azure Front Door
-image: amitai
-severity: Medium
-discoveredBy: 
-  name: Jeti
-  org: null
-  domain: https://blog.jeti.pw/
-  twitter: https://twitter.com/0xJeti
-publishedAt: 2023/06/27
-disclosedAt: 2023/05/08
-exploitabilityPeriod: null
-knownITWExploitation: false
-summary: |
-  A client-side Desync vulnerability was discovered in one of Microsoft Azure's CDN solutions known as Front Door. Exploiting this vulnerability could
-  also allow "universal" XSS.  
-manualRemediation: |
-  null
-detectionMethods: null
-contributor: https://github.com/korniko98
-references:
-- https://blog.jeti.pw/posts/knocking-on-the-front-door/
\ No newline at end of file