Lucene search
Redhat.comRH:CVE-2022-0691HistoryMar 02, 2022 - 2:50 p.m.
CVE-2022-0691
2022-03-0214:50:01
redhat.com
access.redhat.com
17
0.003 Low
EPSS
Percentile
69.7%
An authorization bypass flaw was found in url-parse. This flaw allows a local unauthenticated attacker to add a backspace character (\b) while submitting a URL. This vulnerability can enable bypassing any hostname checks.
Related
veracode
veracode
Authorization Bypass
2022-02-22 06:06:42
debiancve
debiancve
CVE-2022-0691
2022-02-21 09:15:00
cve
cve
CVE-2022-0691
2022-02-21 09:15:00
osv
osv
url-parse incorrectly parses hostname / protocol due to unstripped leading control characters.
2022-02-22 00:00:30
CVE-2022-0691
2022-02-21 09:15:07
node-url-parse - security update
2023-02-23 00:00:00
github
github
prion
prion
Authorization
2022-02-21 09:15:00
huntr
huntr
Authorization Bypass Through User-Controlled Key
2022-02-19 04:00:10
cvelist
cvelist
ubuntucve
ubuntucve
CVE-2022-0691
2022-02-21 00:00:00
nessus
nessus
Debian DLA-3336-1 : node-url-parse - LTS security update
2023-02-23 00:00:00
debian
debian
[SECURITY] [DLA 3336-1] node-url-parse security update
2023-02-23 00:55:38
openvas
openvas
Debian: Security Advisory (DLA-3336-1)
2023-02-23 00:00:00
Ubuntu: Security Advisory (USN-5973-1)
2023-03-28 00:00:00
ubuntu
ubuntu
url-parse vulnerabilities
2023-03-27 00:00:00
ibm
ibm
redhat
redhat