Filter
Software
Fedoraproject FedoraUndici's fetch with integrity option is too lax when algorithm is specified but hash value is in incorrect
3.5
EPSS
0.04%
First published (updated )
Fedoraproject FedoraUndici's Proxy-Authorization header not cleared on cross-origin redirect for dispatch, request, stream, pipeline
4.3
EPSS
0.04%
First published (updated )
IBM Cognos AnalyticsNode.js could allow a remote attacker to bypass security restrictions, caused by the improper handli…
6.5
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
npm/undiciProxy-Authorization header not cleared on cross-origin redirect in fetch in Undici
4.5
EPSS
0.04%
First published (updated )
npm/undiciBackpressure request ignored in fetch() in Undici
6.5
EPSS
0.04%
First published (updated )
Node.jsNode.js could allow a remote attacker to gain elevated privileges on the system, caused by an error …
7.5
First published (updated )
Fedoraproject FedoraNode.js could allow a remote attacker to bypass security restrictions, caused by the circumvention o…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraUndici's cookie header not cleared on cross-origin redirect in fetch
3.9
First published (updated )
Apache Tomcat- Rapid Reset HTTP/2 vulnerability
First published (updated )
Node.jsNode.js could allow a remote attacker to obtain sensitive information, caused by the failure to rest…
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Node.jsNode.js could allow a remote attacker to bypass security restrictions, caused by the use of the depr…
7.5
First published (updated )
Node.jsNode.js could allow a remote attacker to bypass security restrictions, caused by the use of module.c…
8.8
First published (updated )
Node.jsHackerOne: CVE-2023-32002 Node.js `Module._load()` policy Remote Code Execution Vulnerability
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Node.jsNode.js could allow a remote attacker to bypass security restrictions, caused by an error in the cry…
7.5
First published (updated )
redhat/nodejsA vulnerability has been discovered in Node.js, where the use of proto in process.mainModule.proto.…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/nodejsUndici vulnerable to Regular Expression Denial of Service in Headers
7.5
First published (updated )
Node.jsIt was possible to bypass Permissions and access non authorized modules by using process.mainModule.…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.