Preços Enterprise

CVE-2022-0512

5.3MEDIUM

Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.6.

Publicado: 2/14/2022Atualizado: 11/21/2024

Ver no NVD Ver no MITRE

Descrição

Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.6.

Análise IADesenvolvido por IA

Produtos Afetados

url-parse_projecturl-parse

Referências

https://github.com/unshiftio/url-parse/commit/9be7ee88afd2bb04e4d5a1a8da9a389ac13f8c40
PatchThird Party Advisory
https://huntr.dev/bounties/6d1bc51f-1876-4f5b-a2c2-734e09e8e05b
ExploitPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2023/02/msg00030.html
https://github.com/unshiftio/url-parse/commit/9be7ee88afd2bb04e4d5a1a8da9a389ac13f8c40
PatchThird Party Advisory
https://huntr.dev/bounties/6d1bc51f-1876-4f5b-a2c2-734e09e8e05b
ExploitPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2023/02/msg00030.html