7 matches found
CVE-2026-1527
ImpactWhen an application passes user-controlled input to the upgrade option of client.request, an attacker can inject CRLF sequences \r\n to: Inject arbitrary HTTP headers Terminate the HTTP request prematurely and smuggle raw data to non-HTTP services Redis, Memcached, Elasticsearch The...
CVE-2026-1527
ImpactWhen an application passes user-controlled input to the upgrade option of client.request, an attacker can inject CRLF sequences \r\n to: Inject arbitrary HTTP headers Terminate the HTTP request prematurely and smuggle raw data to non-HTTP services Redis, Memcached, Elasticsearch The...
UBUNTU-CVE-2026-1527
ImpactWhen an application passes user-controlled input to the upgrade option of client.request, an attacker can inject CRLF sequences \r\n to: Inject arbitrary HTTP headers Terminate the HTTP request prematurely and smuggle raw data to non-HTTP services Redis, Memcached, Elasticsearch The...
CVE-2026-1527 undici is vulnerable to CRLF Injection via upgrade option
ImpactWhen an application passes user-controlled input to the upgrade option of client.request, an attacker can inject CRLF sequences \r\n to: Inject arbitrary HTTP headers Terminate the HTTP request prematurely and smuggle raw data to non-HTTP services Redis, Memcached, Elasticsearch The...
CVE-2026-1527
Undici (Node.js HTTP client) is vulnerable to a CRLF injection via the upgrade option in client.request() when user-controlled input is passed to the upgrade value. The root cause is that the upgrade value is written directly to the socket without validating header characters, allowing an attacke...
undici 安全漏洞
Undici is an open-source HTTP/1.1 client developed by Node.js. There is a security vulnerability in Undici, which stems from the lack of validation of user input in the upgrade option. This vulnerability could allow attackers to inject CRLF sequences, thereby injecting arbitrary HTTP headers or...
PT-2026-25066
Name of the Vulnerable Software and Affected Versions undici versions prior to 7.24.0 and prior to 6.24.0 Description The issue arises when an application passes user-controlled input to the upgrade option of the client.request function. This allows an attacker to inject CRLF Carriage Return Line...