Vulnerabilities (CVE)

Filtered by vendor Http-cache-semantics Project Subscribe
Filtered by product Http-cache-semantics
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-25881 1 Http-cache-semantics Project 1 Http-cache-semantics 2024-11-21 N/A 5.3 MEDIUM
This affects versions of the package http-cache-semantics before 4.1.1. The issue can be exploited via malicious request header values sent to a server, when that server reads the cache policy from the request using this library.