Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:13 a.m.18 views

CVE-2022-31069

NestJS Proxy is a NestJS module to decorate and proxy calls. Prior to version 0.7.0, the nestjs-proxy library did not have a way to control when Authorization headers should should be forwarded for specific backend services configured by the application developer. This could have resulted in...

7.5CVSS6.4AI score0.00603EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/06/15 7:0 p.m.38 views

CVE-2022-31069 Potential Authorization Header Exposure in NPM Packages @finastra/nestjs-proxy, @ffdc/nestjs-proxy

NestJS Proxy is a NestJS module to decorate and proxy calls. Prior to version 0.7.0, the nestjs-proxy library did not have a way to control when Authorization headers should should be forwarded for specific backend services configured by the application developer. This could have resulted in...

5.8CVSS7.6AI score0.00603EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/06/15 7:0 p.m.6 views

CVE-2022-31069 Potential Authorization Header Exposure in NPM Packages @finastra/nestjs-proxy, @ffdc/nestjs-proxy

NestJS Proxy is a NestJS module to decorate and proxy calls. Prior to version 0.7.0, the nestjs-proxy library did not have a way to control when Authorization headers should should be forwarded for specific backend services configured by the application developer. This could have resulted in...

5.8CVSS7.5AI score0.00603EPSS
Exploits0References2
CVE
CVE
added 2022/06/15 7:0 p.m.83 views

CVE-2022-31069

CVE-2022-31069 Impact and Fix: The issue concerns the NestJS Proxy library where Authorization headers could be inadvertently forwarded to backend services. A fix was introduced in nestjs-proxy version 0.7.0 (under @finastra/nestjs-proxy). The advisory notes that @ffdc/nestjs-proxy is deprecated,...

7.5CVSS6.4AI score0.00603EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder