3 matches found
CVE-2026-9679 vulnerabilities
Vulnerabilities for packages: saf, vitess, renovate, prism, code-server, node-gyp, npm...
CVE-2026-9679
creationtimestamp| type| source ---|---|--- 2026-06-17 16:59:18+00:00| seen| https://bsky.app/profile/ulisesgascon.com/post/3moirxg7wts2g 2026-06-18 15:59:05+00:00| seen| https://bsky.app/profile/nodeland.dev/post/3mol72nba3o2f 2026-06-23 12:01:41+00:00| seen|...
CVE-2026-9679
undici vulnerability CVE-2026-9679 affects the cookie parsing paths (parseSetCookie, parseCookie, getSetCookies). The cookie parser percent-decodes values (via qsUnescape), turning sequences like %0D%0A, %00, %3B, and %3D into literal bytes. RFC 6265 §5.4 does not require decoding and browsers do...