Skip to content
snailsploit[$]
CVE Disclosure · Tornado

CVE-2026-49853

Tornado · pip

SimpleAsyncHTTPClient forwards Authorization and Cookie headers across cross-origin redirects

SeverityHigh
ClassCredential leak
VectorCross-origin redirect
AdvisoryGHSA-3x9g-8vmp-wqvf

Summary

CVE-2026-49853 is a credential-exposure flaw in Tornado (pip, < 6.5.6). When SimpleAsyncHTTPClient followed an HTTP redirect, it did not strip the Authorization and Cookie headers even when the redirect target was a different origin — forwarding the caller's credentials to that new host.

Technical Detail

Sensitive request headers are scoped to the origin they were issued for. A correct HTTP client drops Authorization and Cookie when a redirect crosses to a different scheme, host, or port. Tornado's client carried them through unchanged:

The attacker-controlled destination now receives a valid token it was never meant to see.

Impact

Exposure of bearer tokens and session cookies to unintended third-party hosts. Any code path that lets an attacker influence a redirect target — open redirects, compromised upstreams, SSRF-adjacent flows — becomes a credential-exfiltration channel.

Resolution

Upgrade to Tornado 6.5.6, which clears Authorization and Cookie headers on cross-origin redirects. Hardening guidance:

References

Vendor Advisory (GHSA)MITRENVD

Disclosure

Reported to the Tornado maintainers by SnailSploit together with noobone123, 0xHunSec, and sondt99; credit accepted. Coordinated via GitHub Security Advisory GHSA-3x9g-8vmp-wqvf. See the advisory for affected and fixed version details.

disclosure contextall cves →
all disclosures
CVE Ledger →
Published CVEs
advisories
GHSA disclosures →
Coordinated advisories
engage
Pen Testing →
same methodology, your stack
Author
Kai Aizen
Independent Adversarial · Research group. Published CVEs, Linux kernel mainline patches, creator of AATMF / P.R.O.M.P.T / SEF, author of Adversarial Minds.
aboutservicesresearchgate
Quick facts
ID
CVE-2026-49853
Product
Tornado (pip)
Severity
High
Class
Credential leak
Vector: SimpleAsyncHTTPClient forwards Authorization/Cookie across cross-origin redirect · Affected/Fixed: see GHSA
References: GHSA-3x9g-8vmp-wqvf · MITRE · NVD
Frequently asked

CVE-2026-49853 — questions & answers

What is CVE-2026-49853?

CVE-2026-49853 is a credential-exposure flaw in Tornado (< 6.5.6). SimpleAsyncHTTPClient forwarded Authorization and Cookie headers across cross-origin redirects, so a redirect to a different host received the original credentials. Tracked as GHSA-3x9g-8vmp-wqvf.

Am I affected by CVE-2026-49853?

You are affected if you use Tornado < 6.5.6 and make authenticated requests with SimpleAsyncHTTPClient while following redirects to targets you do not fully control. See GHSA-3x9g-8vmp-wqvf for details.

How do I fix CVE-2026-49853?

Upgrade to Tornado 6.5.6, which clears Authorization and Cookie headers on cross-origin redirects. As interim mitigation, disable redirect-following for credentialed requests or validate redirect targets explicitly.

What is the impact of CVE-2026-49853?

Bearer tokens and session cookies can leak to unintended third-party hosts whenever an attacker can influence a redirect target, turning open redirects or compromised upstreams into a credential-exfiltration channel.

Where can I find authoritative references?

The GitHub Security Advisory GHSA-3x9g-8vmp-wqvf, the MITRE CVE record for CVE-2026-49853, and the NVD detail page once published.