CVE-2019-15606
CVSS v3.1
9.8 (Critical)
CVSS v2.0
7.5 (High)
EPSS
1.25 % (86th)
Affected Products
7
Advisories
19
Including trailing white space in HTTP header values in Nodejs 10, 12, and 13 causes bypass of authorization based on header value comparisons
Weaknesses
- CWE-20
- Improper Input Validation
- CWE-NVD-Other
- CVE Status
- PUBLISHED
- CNA
- HackerOne
- Published Date
-
2020-02-07 15:15:11
(4 years ago) - Updated Date
-
2024-03-07 21:24:40
(6 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Configuration #5
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...