Vulnerabilities (CVE)

Filtered by vendor Find-my-way Project Subscribe
Filtered by product Find-my-way
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-7764 1 Find-my-way Project 1 Find-my-way 2024-11-21 5.0 MEDIUM 5.9 MEDIUM
This affects the package find-my-way before 2.2.5, from 3.0.0 and before 3.0.5. It accepts the Accept-Version' header by default, and if versioned routes are not being used, this could lead to a denial of service. Accept-Version can be used as an unkeyed header in a cache poisoning attack.