Количество 11
Количество 11
BDU:2024-03121
Уязвимость клиента HTTP/1.1 undici программной платформы Node.js, позволяющая нарушителю выполнить произвольный код
CVE-2024-30260
Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici cleared Authorization and Proxy-Authorization headers for `fetch()`, but did not clear them for `undici.request()`. This vulnerability was patched in version(s) 5.28.4 and 6.11.1.
CVE-2024-30260
Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici cleared Authorization and Proxy-Authorization headers for `fetch()`, but did not clear them for `undici.request()`. This vulnerability was patched in version(s) 5.28.4 and 6.11.1.
CVE-2024-30260
Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici cleared Authorization and Proxy-Authorization headers for `fetch()`, but did not clear them for `undici.request()`. This vulnerability was patched in version(s) 5.28.4 and 6.11.1.
CVE-2024-30260
CVE-2024-30260
Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici ...
GHSA-m4v8-wqvr-p9f7
Undici's Proxy-Authorization header not cleared on cross-origin redirect for dispatch, request, stream, pipeline
SUSE-SU-2024:1836-1
Security update for nodejs16
SUSE-SU-2024:1309-1
Security update for nodejs18
SUSE-SU-2024:1307-1
Security update for nodejs18
SUSE-SU-2024:1301-1
Security update for nodejs20
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-03121 Уязвимость клиента HTTP/1.1 undici программной платформы Node.js, позволяющая нарушителю выполнить произвольный код | CVSS3: 3.9 | 0% Низкий | почти 2 года назад |
 | CVE-2024-30260 Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici cleared Authorization and Proxy-Authorization headers for `fetch()`, but did not clear them for `undici.request()`. This vulnerability was patched in version(s) 5.28.4 and 6.11.1. | CVSS3: 3.9 | 0% Низкий | почти 2 года назад |
 | CVE-2024-30260 Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici cleared Authorization and Proxy-Authorization headers for `fetch()`, but did not clear them for `undici.request()`. This vulnerability was patched in version(s) 5.28.4 and 6.11.1. | CVSS3: 3.9 | 0% Низкий | почти 2 года назад |
 | CVE-2024-30260 Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici cleared Authorization and Proxy-Authorization headers for `fetch()`, but did not clear them for `undici.request()`. This vulnerability was patched in version(s) 5.28.4 and 6.11.1. | CVSS3: 3.9 | 0% Низкий | почти 2 года назад |
 | CVSS3: 4.3 | 0% Низкий | около 1 года назад | |
| CVE-2024-30260 Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici ... | CVSS3: 3.9 | 0% Низкий | почти 2 года назад |
| GHSA-m4v8-wqvr-p9f7 Undici's Proxy-Authorization header not cleared on cross-origin redirect for dispatch, request, stream, pipeline | CVSS3: 3.9 | 0% Низкий | почти 2 года назад |
 | SUSE-SU-2024:1836-1 Security update for nodejs16 | больше 1 года назад | ||
| SUSE-SU-2024:1309-1 Security update for nodejs18 | почти 2 года назад | ||
| SUSE-SU-2024:1307-1 Security update for nodejs18 | почти 2 года назад | ||
| SUSE-SU-2024:1301-1 Security update for nodejs20 | почти 2 года назад |
Уязвимостей на страницу