Количество 2
Количество 2
CVE-2023-26108
Versions of the package @nestjs/core before 9.0.5 are vulnerable to Information Exposure via the StreamableFile pipe. Exploiting this vulnerability is possible when the client cancels a request while it is streaming a StreamableFile, the stream wrapped by the StreamableFile will be kept open.
GHSA-4jpv-8r57-pv7j
@nestjs/core vulnerable to Information Exposure via StreamableFile pipe
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-26108 Versions of the package @nestjs/core before 9.0.5 are vulnerable to Information Exposure via the StreamableFile pipe. Exploiting this vulnerability is possible when the client cancels a request while it is streaming a StreamableFile, the stream wrapped by the StreamableFile will be kept open. | CVSS3: 3.7 | 0% Низкий | почти 3 года назад |
| GHSA-4jpv-8r57-pv7j @nestjs/core vulnerable to Information Exposure via StreamableFile pipe | CVSS3: 5.3 | 0% Низкий | почти 3 года назад |
Уязвимостей на страницу