Lucene search
PRIOn knowledge basePRION:CVE-2024-27922HistoryMar 14, 2024 - 10:53 p.m.
Code injection
2024-03-1422:53:52
PRIOn knowledge base
www.prio-n.com
23
tomp bare server
vulnerability
patched version
code injection
http requests
web traffic
TOMP Bare Server implements the TompHTTP bare server. A vulnerability in versions prior to 2.0.2 relates to insecure handling of HTTP requests by the @tomphttp/bare-server-node package. This flaw potentially exposes the users of the package to manipulation of their web traffic. The impact may vary depending on the specific usage of the package but it can potentially affect any system where this package is in use. The problem has been patched in version 2.0.2. As of time of publication, no specific workaround strategies have been disclosed.
| CPE | Name | Operator | Version |
|---|---|---|---|
| bare-server-node | eq | = < 2.0.2 |
Related
osv
osv
HTTP Handling Vulnerability in the Bare server
2024-03-05 16:24:31
veracode
veracode
Insecure Handling Of HTTP Requests
2024-03-06 05:47:43
github
github
HTTP Handling Vulnerability in the Bare server
2024-03-05 16:24:31
cvelist
cvelist
CVE-2024-27922 HTTP Handling Vulnerability in the Bare server
2024-03-06 20:33:57
nvd
nvd
CVE-2024-27922
2024-03-21 02:52:21
cve
cve
CVE-2024-27922
2024-03-21 02:52:21