Including trailing white space in HTTP header values in Nodejs 10, 12, and 13 causes bypass of authorization based on header value comparisons
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nodejs node.js |
||
oracle graalvm 20.0.0 |
||
oracle graalvm 19.3.1 |
||
oracle communications cloud native core network function cloud native environment 1.4.0 |
||
debian debian linux 10.0 |
||
redhat enterprise linux 8.0 |
||
redhat enterprise linux eus 8.1 |
||
opensuse leap 15.1 |