CVE-2026-48595: Authorization header leaks to third-party origin on cross-origin redirect in Tesla.Middleware.FollowRedirects
Improper Handling of Case Sensitivity vulnerability in elixir-tesla tesla allows credential leakage to a third-party origin on cross-origin redirects. Tesla.Middleware.FollowRedirects strips security-sensitive headers on cross-origin redirects using a case-sensitive string comparison against a lowercase filter list (@filter_headers ["authorization", "host"]). HTTP header names are case-insensitive per RFC 7230, but Tesla preserves header keys verbatim as supplied by the caller without normalizing case. A header set as {"Authorization", "Bearer …"} (the RFC 7235 canonical casing used by virtually all HTTP libraries and documentation) does not match the lowercase filter entry and is forwarded to the redirect destination. An attacker who can control or influence a Location: response seen by the client (via their own endpoint, a redirect-open upstream, or a compromised origin) receives the bearer token or other Authorization material on the cross-origin request. This issue affects tesla: from 1.4.0 before 1.18.3.
Metrics
- CVSS v4.0
- 8.2
- Severity
- HIGH
- Fixed in
- 1.18.3
- Affected Products
- 2
HarborGuard Analysis
Synopsis
An improper case-sensitivity handling flaw in the Tesla HTTP client library for Elixir (elixir-tesla/tesla) causes the FollowRedirects middleware to forward Authorization headers to third-party origins on cross-origin redirects. The vulnerability is reachable over the network without any authentication, because an attacker only needs to influence a redirect Location response seen by the Tesla client (for example, by controlling a redirect endpoint or exploiting an open redirect on a trusted origin). Successful exploitation leaks bearer tokens or other Authorization credentials to an attacker-controlled server. A patched-image rebuild at version 1.18.3 is available on HarborGuard for environments running an affected version.
HarborGuard Coverage
Detection capability is available across every HarborGuard environment: CVE-2026-48595 is ingested from upstream advisory feeds within minutes of publication and matched against all customer images, including custom-built Elixir application images that bundle an affected version of tesla. Coverage extends to both registry scans and inline pipeline checks so affected images are flagged before they reach production.
AvailableHarborGuard is capable of scoring this CVE at CVSS 8.2 HIGH and weighting it against each customer environment's compliance policy to prioritize it appropriately. Triage results can be routed to the team inbox configured for each affected workload, giving the right engineers immediate visibility without manual filtering.
AvailableA patched-image rebuild at tesla 1.18.3 (commit db963dba67651b9abd1fc420a1d9679cf6efe182) becomes available on HarborGuard as soon as an affected image is identified. For customers who opt into auto-remediation, HarborGuard rebuilds the image, runs the regression test suite, and opens a pull request against affected workloads automatically.
AvailableExploit Conditions
- Network reachabilityRequired
The attacker must be reachable over the network as a redirect destination, or must be able to influence a Location header returned to the Tesla client from a network-accessible endpoint.
- AuthenticationNot required
No account or credential is required to exploit this; the attacker simply needs to receive the redirected HTTP request.
- Victim interactionNot required
No user action is needed; the Tesla client follows the redirect automatically without any human interaction.
- Attack complexityDetail
The exploit is generally reliable and condition-free, though the CVSS vector notes an attack requirement of a specific prerequisite condition (AT:P), meaning the attacker must be positioned to control or influence a redirect response seen by the client, such as by operating a redirect endpoint or exploiting an open redirect on a trusted origin.
Blast Radius
- The attacker receives the raw Authorization header value, typically a bearer token or Basic credentials, sent by the Tesla client to the legitimate origin.
- With a stolen bearer token, the attacker can authenticate to the protected API as the original client and read any data that token authorizes, such as stored user records, session data, or API responses.
- Credential leakage is silent from the legitimate service's perspective because the token is valid; there is no error condition that would alert the victim application.
How HarborGuard Handles This
Available on HarborGuard: detection for CVE-2026-48595 is active across all environments that scan images containing elixir-tesla/tesla versions 1.4.0 through 1.18.2. Where a fix version is present in the scanned image manifest, HarborGuard can produce a rebuilt image pinned to tesla 1.18.3. For customers who opt into auto-remediation, the typical flow is: rebuilt image produced, regression tests executed, and a pull request opened against affected workloads. For environments where compliance policy does not permit auto-remediation, the CVE is surfaced in the findings dashboard with CVSS 8.2 HIGH severity so engineers can plan an upgrade manually. As an interim compensating control, network-policy rules that prevent the application from following redirects to untrusted origins, or egress filtering that blocks unexpected redirect destinations, reduce the window of exposure until the library is patched.
- elixir-tesla / tesla< 1.18.3 (from 1.4.0)
- elixir-tesla / tesla< db963dba67651b9abd1fc420a1d9679cf6efe182 (from 2d937d5813d7cda5cd726f41824985fb655c920f)
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N