Lucene search
K

@angular/platform-server: SSRF via Hostname Hijacking

🗓️ 19 May 2026 20:29:49Reported by GitHub Advisory DatabaseType 
github
 github
🔗 github.com👁 13 Views

SSRF in Angular platform-server enables hostname hijacking; allowlist validates hosts.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-46417
22 Jun 202615:40
attackerkb
Circl
CVE-2026-46417
15 May 202617:50
circl
CVE
CVE-2026-46417
22 Jun 202615:40
cve
Cvelist
CVE-2026-46417 Angular: SSRF via Hostname Hijacking in @angular/platform-server
22 Jun 202615:40
cvelist
Debian CVE
CVE-2026-46417
22 Jun 202615:40
debiancve
EUVD
EUVD-2026-38294
22 Jun 202615:40
euvd
NVD
CVE-2026-46417
22 Jun 202618:16
nvd
OSV
DEBIAN-CVE-2026-46417
22 Jun 202618:16
osv
OSV
GHSA-RFH7-FXQC-Q52V @angular/platform-server: SSRF via Hostname Hijacking
19 May 202620:29
osv
OSV
UBUNTU-CVE-2026-46417
22 Jun 202618:16
osv
Rows per page
Vulners
Node
angularplatform-serverRange18.2.14npm
OR
angularplatform-serverRange19.0.0-next.019.2.22npm
OR
angularplatform-serverRange20.0.0-next.020.3.21npm
OR
angularplatform-serverRange21.0.0-next.021.2.13npm
OR
angularplatform-serverRange22.0.0-next.022.0.0-next.12npm

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

19 May 2026 20:29Current
5.8Medium risk
Vulners AI Score5.8
CVSS 3.16.1
CVSS 48.8
EPSS0.0021
SSVC
13