Including trailing white space in HTTP header values in Nodejs 10, 12, and 13 causes bypass of authorizatio
Reporter | Title | Published | Views | Family All 101 |
---|---|---|---|---|
![]() | Node.js: HTTP header values do not have trailing OWS trimmed | 6 Nov 201917:46 | – | hackerone |
![]() | Authorization | 7 Feb 202015:15 | – | prion |
![]() | CVE-2019-15606 | 7 Feb 202000:00 | – | ubuntucve |
![]() | CVE-2019-15606 | 7 Feb 202015:15 | – | osv |
![]() | Important: nodejs:12 security update | 25 Feb 202013:06 | – | osv |
![]() | Red Hat Security Advisory: nodejs:12 security update | 13 Sep 202416:16 | – | osv |
![]() | Important: nodejs:12 security update | 25 Feb 202013:06 | – | osv |
![]() | Important: nodejs:10 security update | 25 Feb 202007:57 | – | osv |
![]() | Red Hat Security Advisory: nodejs:10 security update | 13 Sep 202416:16 | – | osv |
![]() | Important: nodejs:10 security update | 25 Feb 202007:57 | – | osv |
[
{
"product": "https://github.com/nodejs/node",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "10.19.0, 12.15.0, 13.8.0"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo