Описание
Undici is an HTTP/1.1 client, written from scratch for Node.js. Depending on network and process conditions of a fetch() request, response.arrayBuffer() might include portion of memory from the Node.js process. This has been patched in v6.19.2.
Ссылки
EPSS
Процентиль: 45%
0.00223
Низкий
2 Low
CVSS3
Дефекты
CWE-201
Связанные уязвимости
CVSS3: 2
ubuntu
больше 1 года назад
Undici is an HTTP/1.1 client, written from scratch for Node.js. Depending on network and process conditions of a `fetch()` request, `response.arrayBuffer()` might include portion of memory from the Node.js process. This has been patched in v6.19.2.
CVSS3: 2
debian
больше 1 года назад
Undici is an HTTP/1.1 client, written from scratch for Node.js. Depend ...
CVSS3: 2
github
больше 1 года назад
Undici vulnerable to data leak when using response.arrayBuffer()
EPSS
Процентиль: 45%
0.00223
Низкий
2 Low
CVSS3
Дефекты
CWE-201