Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/12/04 2:9 p.m.9 views

Security Bulletin: IBM Edge Data Collector uses http-proxy-middleware - 2.0.7 which is vulnerable to CVE-2025-32996, CVE-2025-32997.

Summary IBM Edge Data Collector uses http-proxy-middleware - 2.0.7 which is vulnerable to CVE-2025-32996, CVE-2025-32997. This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2025-32996 DESCRIPTION: In http-proxy-middleware before 2.0.8 and 3.x before...

5.3CVSS6.7AI score0.00417EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/09/14 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2025-32997

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In http-proxy-middleware before 2.0.9 and 3.x before 3.0.5, fixRequestBody proceeds even if bodyParser has failed. CVE-2025-32997 Note that Nessus relies on the...

5.3CVSS6.4AI score0.00417EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/08/04 7:13 a.m.13 views

Security Bulletin: IBM Maximo Application Suite uses multiple nodejs and go packages which is vulnerable to " CVE-2025-27152, CVE-2025-32996, CVE-2025-32997, CVE-2025-22871"

Summary IBM Maximo Application Suite uses " axios, http-proxy-middleware and net/http package " which is vulnerable to "CVE-2025-27152, CVE-2025-32996, CVE-2025-32997, CVE-2025-22871". This bulletin contains information regarding the vulnerability and how to address it. Vulnerability Details...

9.1CVSS6.7AI score0.00778EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/29 7:35 a.m.16 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to http-proxy-middleware-2.0.7.tgz CVE-2025-32997

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to http-proxy-middleware-2.0.7.tgz CVE-2025-32997. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2025-32997 DESCRIPTION: In http-proxy-middleware before 2.0.9 and 3....

5.3CVSS6.5AI score0.00417EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/04/15 4:58 a.m.22 views

CVE-2025-32997

A flaw was found in http-proxy-middleware. The issue occurs because the fixRequestBody function proceeds even when bodyParser has failed, which could lead to unintended behavior. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Ha...

4CVSS4.1AI score0.00417EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/04/15 12:0 a.m.28 views

CVE-2025-32997

In http-proxy-middleware before 2.0.9 and 3.x before 3.0.5, fixRequestBody proceeds even if bodyParser has failed...

4CVSS0.00417EPSS
Exploits0References4
Rows per page
Query Builder