Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

Haxatron1H1:1663788

HistoryAug 09, 2022 - 1:51 p.m.

Vulners
/
Hackerone
/
Internet Bug Bounty: [CVE-2022-35949]: undici.request vulnerable to SSRF using absolute / protocol-relative URL on pathname

Internet Bug Bounty: [CVE-2022-35949]: undici.request vulnerable to SSRF using absolute / protocol-relative URL on pathname

2022-08-0913:51:45

haxatron1

hackerone.com

internet bug bounty

undici request

ssrf

absolute url

protocol-relative url

pathname

ghsa

hackerone

vulnerability

0.002 Low

EPSS

Percentile

61.0%

JSON

GHSA: https://github.com/nodejs/undici/security/advisories/GHSA-8qr4-xgw6-wmr3

Report: https://hackerone.com/reports/1642017

Impact

SSRF

veracode 1

debiancve 1

osv 2

cve 1

ubuntucve 1

cvelist 1

redhatcve 1

nvd 1

prion 1

github 1

ibm 1

openvas 5

suse 2

nessus 4

redhat 1

gentoo 1

veracode

Server-Side Request Forgery (SSRF)

2022-08-15 10:21:55

debiancve

CVE-2022-35949

2022-08-12 23:15:07

osv

`undici.request` vulnerable to SSRF using absolute URL on `pathname`

2022-08-18 18:59:46

CVE-2022-35949

2022-08-12 23:15:07

cve

CVE-2022-35949

2022-08-12 23:15:07

ubuntucve

CVE-2022-35949

2022-08-12 00:00:00

cvelist

CVE-2022-35949 `undici.request` vulnerable to SSRF using absolute URL on `pathname`

2022-08-12 00:00:00

redhatcve

CVE-2022-35949

2022-08-24 11:39:42

nvd

CVE-2022-35949

2022-08-12 23:15:07

prion

Server side request forgery (ssrf)

2022-08-12 23:15:00

github

`undici.request` vulnerable to SSRF using absolute URL on `pathname`

2022-08-18 18:59:46

ibm

Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands may be vulnerable to loss of confidentiality due to CVE-2022-35948 and CVE-2022-35949

2022-08-18 14:30:37

openvas

SUSE: Security Advisory (SUSE-SU-2022:3196-1)

2022-09-09 00:00:00

SUSE: Security Advisory (SUSE-SU-2022:3251-1)

2022-09-13 00:00:00

openSUSE: Security Advisory for nodejs16 (SUSE-SU-2022:3251-1)

2022-09-13 00:00:00

suse

Security update for nodejs16 (moderate)

2022-09-12 00:00:00

Security update for nodejs16 (moderate)

2022-09-12 00:00:00

nessus

SUSE SLES12 Security Update : nodejs16 (SUSE-SU-2022:3196-1)

2022-09-09 00:00:00

SUSE SLES15 Security Update : nodejs16 (SUSE-SU-2022:3250-1)

2022-09-13 00:00:00

SUSE SLES15 Security Update : nodejs16 (SUSE-SU-2022:3251-1)

2022-09-13 00:00:00

redhat

(RHSA-2022:7276) Moderate: Red Hat Advanced Cluster Management 2.4.8 security fixes and container updates

2022-11-01 13:17:42

gentoo

Node.js: Multiple Vulnerabilities

2024-05-08 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.002 Low

EPSS

Percentile

61.0%

JSON

Related for H1:1663788