CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

NVD•added 2026/06/22 6:16 p.m.•9 views

CVE-2026-50170

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 21.2.15, 20.3.22, and 19.2.23, a vulnerability was discovered in @angular/common when Server-Side Rendering SSR and hydration are enabled. The...

8.2CVSS0.00303EPSS

Exploits0References2

OSV•added 2026/06/22 4:16 p.m.•3 views

DEBIAN-CVE-2026-54266

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.17, and 20.3.25, Angular's HttpTransferCache caches HTTP requests made during Server-Side Rendering SSR so that they can be reused during...

6.1CVSS5.9AI score0.0009EPSS

Exploits0References1

Debian CVE•added 2026/06/22 3:39 p.m.•5 views

CVE-2026-50170

8.2CVSS5.8AI score0.00303EPSS

Exploits0

ATTACKERKB•added 2026/06/22 3:39 p.m.•2 views

CVE-2026-50170

8.2CVSS5.8AI score0.00303EPSS

Exploits0References3Affected Software1

CVE•added 2026/06/22 3:39 p.m.•29 views

CVE-2026-50170

The CVE concerns Angular's @angular/common in SSR/hydration mode. The HttpTransferCache caches outgoing HTTP requests during Server-Side Rendering and transfers them via TransferState to the client, but it does not inspect withCredentials or Cookie headers. This can cause credentialed, user-speci...

8.2CVSS5.8AI score0.00303EPSS

Exploits0References2

Cvelist•added 2026/06/22 3:28 p.m.•30 views

CVE-2026-54266 Angular: Weak 32-Bit Cache Key Hashing in `HttpTransferCache` Leading to Cross-Request Data Leakage and State Poisoning

8.8CVSS0.0009EPSS

Exploits0References3

EUVD•added 2026/06/22 3:28 p.m.•7 views

EUVD-2026-38269

8.8CVSS5.9AI score0.0009EPSS

Exploits0References3

CVE•added 2026/06/22 3:28 p.m.•51 views

CVE-2026-54266

Angular’s HttpTransferCache uses a weak 32‑bit DJB2‑like hash to generate TransferState cache keys, enabling hash collisions that let attackers overwrite a victim’s cached SSR responses (state poisoning and potential data leakage) by visiting crafted links. This affects Angular versions prior to ...

8.8CVSS5.9AI score0.0009EPSS

Exploits0References3Affected Software1

ATTACKERKB•added 2026/06/22 3:28 p.m.•4 views

CVE-2026-54266

8.8CVSS5.9AI score0.0009EPSS

Exploits0References4Affected Software1

Debian CVE•added 2026/06/22 3:28 p.m.•7 views

CVE-2026-54266

8.8CVSS5.9AI score0.0009EPSS

Exploits0

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: spi: tegra210-quad: Protect currxfer in tegraqspicombinedseqxfer The currxfer field is read by the IRQ handler without holding a lock. This allows the IRQ handler to check whether a transfer is in progress. When clearing the...

5.5CVSS5.2AI score0.00111EPSS

Exploits0References1

Github Security Blog•added 2026/06/15 5:24 p.m.•67 views

@angular/common: Weak 32-Bit Cache Key Hashing in `HttpTransferCache` Leading to Cross-Request Data Leakage and State Poisoning

Angular's HttpTransferCache caches HTTP requests made during Server-Side Rendering SSR so that they can be reused during client-side hydration. This avoids repeating the same HTTP requests on the client. The cached responses are stored in TransferState using a cache key generated by hashing reque...

8.8CVSS5.3AI score0.0009EPSS

Exploits0References4Affected Software1

OSV•added 2026/06/15 5:24 p.m.•5 views

GHSA-39PV-4J6C-2G6V @angular/common: Weak 32-Bit Cache Key Hashing in `HttpTransferCache` Leading to Cross-Request Data Leakage and State Poisoning

8.8CVSS5.3AI score0.0009EPSS

Exploits0References4

Github Security Blog•added 2026/06/15 4:51 p.m.•9 views

@angular/common: Information Leak via Default Caching of Credentialed Requests in HttpTransferCache

A vulnerability was discovered in @angular/common when Server-Side Rendering SSR and hydration are enabled. The HttpTransferCache utility optimizes hydration by caching outgoing HTTP requests performed during SSR and transferring the cached state to the client-side application via TransferState...

8.2CVSS5.4AI score0.00303EPSS

Exploits0References3Affected Software1

OSV•added 2026/06/15 4:51 p.m.•8 views

GHSA-Q6F4-QQRG-JV6X @angular/common: Information Leak via Default Caching of Credentialed Requests in HttpTransferCache

8.2CVSS5.5AI score0.00303EPSS

Exploits0References3

Github Security Blog•added 2026/06/15 3:16 p.m.•9 views

Angular Client Hydration DOM Clobbering & Response-Cache Poisoning

To optimize client-side bootstrap in Server-Side Rendered SSR environments, Angular supports Hydration via provideClientHydration. During SSR, Angular serializes the application's runtime state such as cached HttpClient responses and outputs it into the HTML stream as a tag with a predictable...

8.6CVSS5.4AI score0.00179EPSS

Exploits0References4Affected Software1

OSV•added 2026/06/15 3:16 p.m.•4 views

GHSA-RGJC-H3X7-9MWG Angular Client Hydration DOM Clobbering & Response-Cache Poisoning

8.6CVSS5.5AI score0.00179EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-0866

Malware in sbrugna...

7.3CVSS6.6AI score0.00825EPSS

Exploits0References4

OSV•added 2023/02/23 8:15 p.m.•1 views

DEBIAN-CVE-2023-23914

A cleartext transmission of sensitive information vulnerability exists in curl v7.88.0 that could cause HSTS functionality fail when multiple URLs are requested serially. Using its HSTS support, curl can be instructed to use HTTPS instead of usingan insecure clear-text HTTP step even when HTTP is...

9.1CVSS7.6AI score0.00858EPSS

Exploits1References1

OSV•added 2021/01/14 10:15 a.m.•2 views

CVE-2020-28470

This affects the package @scullyio/scully before 1.0.9. The transfer state is serialised with the JSON.stringify function and then written into the HTML page...

6.1CVSS6.7AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by