8 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-24723
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - URI.js is a Javascript URL mutation library. Before version 1.19.9, whitespace characters are not removed from the beginning of the protocol, so URLs are not...
RHEL 8 : dotnet5.0 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - urijs: Authorization Bypass Through User-Controlled Key CVE-2022-0613 - URI.js is a Javascript URL mutati...
Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.
Summary Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak. Node.js follow-redirects is used by IBM Robotic Process Automation as part of API Server functionality CVE-2022-0536. Madialize URI.js module for NPM is used by IBM Robotic Process Automation as par...
Moderate: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.3.10 security updates and bug fixes
Red Hat Advanced Cluster Management for Kubernetes 2.3.10 General Availability release images, which provide security updates and bug fixes. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a...
CVE-2022-24723 Improper Input Validation in URI.js
URI.js is a Javascript URL mutation library. Before version 1.19.9, whitespace characters are not removed from the beginning of the protocol, so URLs are not parsed properly. This issue has been patched in version 1.19.9. Removing leading whitespace from values before passing them to URI.parse ca...
CVE-2022-24723
CVE-2022-24723 concerns Medialize URI.js, a JavaScript URL mutation library. The vulnerability arises from leading whitespace not being removed from the beginning of the protocol, causing improper URL parsing in versions prior to 1.19.9. The issue has been patched in v1.19.9; a documented workaro...
CVE-2022-24723 Improper Input Validation in URI.js
URI.js is a Javascript URL mutation library. Before version 1.19.9, whitespace characters are not removed from the beginning of the protocol, so URLs are not parsed properly. This issue has been patched in version 1.19.9. Removing leading whitespace from values before passing them to URI.parse ca...
01_basic_webpack (>=1.0.0 <=1.0.8), 0726react (=0.1.1) +12923 more potentially affected by CVE-2022-24723 via urijs (>=1.16.1 <=1.19.8)
urijs NPM version =1.16.1, =1.0.0, =1.0.9, =0.0.1, =0.0.1-beta.0, =1.0.0, =1.0.4, =1.0.1, =0.0.1, =0.1.1, =0.1.0, =0.0.1, =0.0.3 and more Source cves: CVE-2022-24723 Source advisory: OSV:GHSA-GMV4-R438-P67F...