CVE-2026-27738

🗓️ 25 Feb 2026 16:40:44Reported by GitHub_MType

Open Redirect in Angular SSR due to X-Forwarded-Prefix, patched in certain versions; sanitize the header.

Reporter	Title	Published	Views	Family All 24
ATTACKERKB	CVE-2026-33397	26 Mar 202613:46	–	attackerkb
ATTACKERKB	CVE-2026-27738	25 Feb 202616:40	–	attackerkb
Circl	CVE-2026-27738	26 Feb 202602:10	–	circl
CNNVD	Angular 输入验证错误漏洞	25 Feb 202600:00	–	cnnvd
Cvelist	CVE-2026-27738 Angular SSR has an Open Redirect via X-Forwarded-Prefix	25 Feb 202616:40	–	cvelist
EUVD	EUVD-2026-13897	26 Mar 202613:46	–	euvd
EUVD	EUVD-2026-8687	25 Feb 202622:41	–	euvd
Github Security Blog	Angular SSR has an Open Redirect via X-Forwarded-Prefix	25 Feb 202622:41	–	github
NVD	CVE-2026-27738	25 Feb 202617:25	–	nvd
OSV	CVE-2026-27738 Angular SSR has an Open Redirect via X-Forwarded-Prefix	25 Feb 202616:40	–	osv

Vulners

Node

angular angular_cliRange21.2.0-next.2–21.2.0-rc.0

angular angular_cliRange21.0.0-next.0–21.1.5

angular angular_cliRange20.0.0-next.0–20.3.17

angular angular_cliRange19.0.0-next.0–19.2.21

[
  {
    "vendor": "angular",
    "product": "angular-cli",
    "versions": [
      {
        "version": ">= 21.2.0-next.2, < 21.2.0-rc.0",
        "status": "affected"
      },
      {
        "version": ">= 21.0.0-next.0, < 21.1.5",
        "status": "affected"
      },
      {
        "version": ">= 20.0.0-next.0, < 20.3.17",
        "status": "affected"
      },
      {
        "version": ">= 19.0.0-next.0, < 19.2.21",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/angular/angular-cli/issues/32501
github	www.github.com/angular/angular-cli/commit/877f017ace4b83277d773aa37f5813e5e9faec7e
github	www.github.com/angular/angular-cli/security/advisories/GHSA-xh43-g2fq-wjrj
github	www.github.com/angular/angular-cli/pull/32521

17 Jun 2026 10:27Current

5.6Medium risk

Vulners AI Score5.6

CVSS 46.9

EPSS0.00302

SSVC

CWE-601